Jobfoundry
Jobfoundry
PwC

Risk Services, Technology Risk Services - Incident Response & SOC Compliance, Senior Associate / Assistant Manager

PwC
BusinessSingapore - Marina One, SingaporeFull-time1 months ago
Apply Now

About the role

AI summarised

This is a Senior Associate/Assistant Manager role in Technology Risk Services at PwC, focusing on Incident Response and SOC Compliance. The role involves leading incident response activities, conducting breach investigations, developing SOC compliance policies, and utilizing DFIR and SIEM tools. The ideal candidate has 2-5 years of SOC experience and relevant certifications.

BusinessFull-timeGeneral

Key Responsibilities

  • Coordinate and lead incident response activities (triage, containment, eradication, and recovery).
  • Investigate and document security breaches, performing root cause analyses and recommending remediation.
  • Leverage DFIR tools (e.g., EnCase, FTK, Autopsy) to identify, collect, and analyse digital evidence, ensuring proper chain of custody.
  • Develop and maintain incident response documentation, including playbooks, reports, and after-action reviews.
  • Create, implement, and update SOC compliance policies and procedures in alignment with relevant standards.
  • Conduct regular audits and assessments to ensure adherence to SOC requirements and identify areas for improvement.
  • Collaborate with cross-functional teams to integrate compliance controls into operational workflows.
  • Utilise SIEM solutions (e.g., RSA NetWitness, QRadar, ArcSight, Splunk) for continuous monitoring, threat detection, and compliance reporting.
  • Analyse logs, alerts, and threats to proactively detect and investigate potential security incidents.
  • Communicate effectively with technical and non-technical stakeholders, providing clear updates on incidents, risks, and compliance requirements.
  • Deliver training programmes to enhance incident response readiness and compliance awareness across the organisation.
  • Stay current with industry regulations, best practices, and emerging threats to maintain robust incident response and compliance capabilities.

Requirements

  • Bachelor's degree in Information Security, Computer Science, or a related field.
  • 2–5 years of experience working in a SOC environment, including hands-on incident response.
  • Practical experience with other DFIR tools or forensic analysis methodologies.
  • Proficiency with SIEM solutions (e.g., RSA NetWitness, QRadar, ArcSight, Splunk).
  • Familiarity with Governance, Risk, and Compliance (GRC) tools (e.g., RSA Archer).
  • Demonstrable analytical and problem-solving skills with attention to detail.
  • Excellent communication skills to engage effectively with stakeholders at all levels.
  • Relevant certifications such as CISA, CISSP, or CISM are a plus.
  • Incident handling or forensics certifications (e.g., GCIH, GCFA, GCFE, EnCE).
  • Familiarity with incident response frameworks (e.g., NIST SP 800-61, SANS).
  • Experience with scripting languages (e.g., VBA, Python) for automation and analysis will be advantageous.