IN_Senior Associate-SOC_Cyber As A Service_Advisory_Gurgaon

Line of Service
Advisory

Industry/Sector
Not Applicable

Specialism
Risk

Management Level
Senior Associate

Job Description & Summary
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.


*Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "


Job Description & Summary: Seeking an experienced ArcSight SOC professional with strong expertise in SIEM content management, use case development, automation, and SOAR integration, along with proven experience in SOC operations management and vendor liaison for managed SOC services. 



Responsibilities: 

 

Mandatory Experience & Skills 

 

1. ArcSight SIEM Expertise 

• 4-6 years of hands-on experience with ArcSight ESM / ArcSight Enterprise Security Manager 
  

• Strong understanding of ArcSight architecture, connectors, event flow, and storage 
  

• Experience with ArcSight Logger and correlation rule tuning 
  
  

• Proven experience in use case creation, customization, and lifecycle management 
  

• Development and maintenance of:  
  

• Correlation rules 
  

• Filters, active lists, dashboards, and reports 
  

• Mapping use cases to MITRE ATT&CK, threat models, and compliance requirements 
  

• Continuous optimization of SIEM content to reduce false positives and improve detection accuracy 
  
  

• Experience implementing automation within ArcSight for:  
  

• Alert enrichment 
  

• Incident prioritization 
  

• Event correlation and suppression 
  

• Integration of ArcSight with security tools (EDR, IAM, Firewall, Threat Intelligence platforms) 
  

• Ability to design SOC workflows that improve response time and operational efficiency 
  
  

• Hands-on experience integrating ArcSight with SOAR platforms (ArcSight SOAR or third-party SOAR tools) 
  

• Design and implementation of playbooks for:  
  

• Incident triage 
  

• Automated investigation 
  

• Response actions 
  

• Collaboration with incident response teams to align SIEM-SOAR use cases 
  
  

• Strong understanding of SOC operations, including Tier 1–3 workflows 
  

• Experience supporting:  
  

• Alert monitoring 
  

• Incident escalation procedures 
  

• SLA and KPI tracking 
  

• Participation in threat hunting, detection engineering, and incident post-mortems 
  
  

• Experience liaising with SOC service vendors / MSSPs 
  

• Ability to:  
  

• Review and validate SOC deliverables 
  

• Track performance against SLAs 
  

• Drive continuous improvement with vendors 
  

• Act as a bridge between internal security teams and external SOC providers 
  
  

• Strong analytical and problem-solving skills 
  

• Ability to work with cross-functional teams 
  

• Ownership mindset with attention to detail 
  

• Comfortable working in a 24x7 SOC environment (if required) 
  
  

• Certifications such as:  
  

• ArcSight Certified Security Analyst / Administrator 
  

• Similar certifications on other SIEM platforms such as IBM QRadar, Microsoft Sentinel, Google SecOps etc. Is plus. 
  

• Strong documentation and communication skills 
  

• Working knowledge of scripting for SIEM automation 
  
  

Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required: Bachelor of Technology

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills
SoCs

Optional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements
Not Specified

Available for Work Visa Sponsorship?
No

Government Clearance Required?
No

Job Posting End Date
May 1, 2026