At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure.

You are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt, take ownership and consistently deliver quality work that drives value for our clients and success as a team.

• Apply a learning mindset and take ownership for your own development.
• Appreciate diverse perspectives, needs, and feelings of others.
• Adopt habits to sustain high performance and develop your potential.
• Actively listen, ask questions to check understanding, and clearly express ideas.
• Seek, reflect, act on, and give feedback.
• Gather information from a range of sources to analyse facts and discern patterns.
• Commit to understanding how the business works and building commercial awareness.
• Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements.

• Security Operations Center (SOC) experience
• Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture;
• Incident Response Frameworks and Handling Procedures;
• Scripting language skills in Python or PowerShell;
• Vulnerability management and penetration testing of systems, applications, and networks;
• Information security, compliance, assurance, and/or other security best practices and principles; and,
• Windows, Linux operating systems logs.

• Working in a shift environment in the assigned shifts, with holidays aligned with client schedules;
• Participating in daily huddles, shift handovers, preparing reports or providing inputs for reports as assigned;
• Preparing materials (reports, presentations, spreadsheets, etc.) to help enable informed decision making;
• Identifying security threats, exploits, attack vectors and performing security investigations;
• Monitoring the local threat ops channels/SIEM/AV/DLP Policy violation consoles and notifying the client/stakeholders of any suspicious/malicious activity within agreed SLA timelines;
• Running a vulnerability scan as per the client schedules;
• Performing initial triage of SIEM, DLP, Host (end point) security issues and escalating based on the defined processes;
• Working with SIEMs, proxy tools, DLP, Windows, LINUX and application logs; and,
• Acquiring and utilizing knowledge on new technologies and solutions, emerging threats and vulnerabilities.