Project Role Description:
Security threat analysis and investigation skills, detection engineering, Training and Documentation
Must have skills:
Networking Fundamentals, security threat analysis and EDR investigation skills, rule writing and playbook creation
Good to have skills:
Network Security (Firewall, IDS/IPS, Endpoint AV, EDR etc.), scripting
Key Responsibilities:
Work as part of a global security analysis team that works 24/7 on rotational shift
Handling tunings, customer requests, escalations, reporting, training, etc.
Life cycle management of the SIEM (Onboarding, Break-fix, Patching, Live update etc)
Adhering to SOPs and notify customers on log flow/log format issues
Incident analysis, deep dive threat hunting and investigation and root cause analysis
Creation of detection rules, testing and implementation
Evaluation of client detection requirements, gap analysis, fine tuning
Playbook creation for automation and integration with SOAR requirements
Document best practices and writing KB articles
Identify opportunities for process improvements
Additional Information:
Following certifications is added advantage: GCIA, GCFA, CISSP
Technical Experience:
Experience in SOC Operations with customer-facing responsibilities
Deep understanding on cyber security fundamentals, security devices, network defense concepts and threat landscape
Hands-on experience in SIEM, SOAR, EDR and threat hunting tools
Hands-on experience in creation of detection rules, playbooks for automation and response actions
Desirable knowledge in any scripting language and EDR products
Strong threat hunting and investigation skills and root cause analysis
Knowledge on networking, Linux and security concepts
Knowledge with security devices such as Firewall, DS/IPS, EDR, UTM, Proxy, Cloud solutions, etc.
Knowledge on log collection mechanisms such as Syslog, Log file, DB & API
Preferable certifications – GCIA, GCFA
Professional Attributes:
Passion for cyber security, learning, and knowledge sharing
Strong Verbal & written communication skills
Proven customer service skills, problem solving and interpersonal skills
Ability to handle high pressure situations
Consistently exhibit high levels of teamwork
Educational Qualification:
Bachelor’s degree in computer science, prior experience in information security or SOC operations
About Accenture
Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.
Visit us atwww.accenture.com
Equal Employment Opportunity Statement
We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, militaryveteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicablelaw. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.
Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale.
We are a talent and innovation-led company serving clients in more than 120 countries. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.
This LinkedIn company page is moderated. When engaging with Accenture, we encourage everyone to:
- Use common courtesy and be respectful of others.
- Create your own original content and avoid content that you know to be fraudulent.
- Never repost someone else's copyrighted work, unless you have permission.
- Never post personal, identifying, or confidential information.
We reserve the right to delete comments or posts we deem to be:
- Profane, obscene, inappropriate, offensive, abusive material.
- Spam, repeated comments and commercial messages and personal advertisements.
- Discriminatory or that contain hateful speech of any kind regarding age, gender, race, religion, nationality, sexual orientation, gender identity or disability.
- Threats; personal attacks; abusive, defamatory, derogatory, or inflammatory language; or stalking or harassment of any individual, entity or organization.
- False, inaccurate, libelous, or otherwise misleading in any way.
