PwC
Not Applicable
SpecialistsL1SOCAnalyst
“Specialists - L1 SOC Analyst at PwC. Skills: SOC operations, Cybersecurity threat monitoring, Incident response, SIEM analysis, Log analysis. Monitoring and analyzing an organization’s security posture on an ongoing basis. Detecting, responding to, and mitigating security incidents”
Industry & Context.
problem solving
Willingness to work in shifts – SOC often operate 24/7, Available for Work Visa Sponsorship? No, Government Clearance Required? No
What They're Looking For.
Must Have
Degree or diploma in Computer Science, Information Security, or related field, 0-1 year of experience in the area of Cybersecurity, SOC or Surveillance, Basic understanding of networking concepts (e. g. TCP/IP, DNS, HTTP, etc. ), Familiarity with operating systems (e. g. Windows, Linux), Knowledge of security and operational tools such as: SIEM platforms (e. g. Wazuh, Splunk), EDR/XDR (e. g. MDE, Cortex, CrowdStrike, Sophos), Firewalls and IDS/IPS systems, communication skills (English is a must), Attention to detail, Team collaboration, Willingness to work in shifts
Nice to Have
Certifications (optional but beneficial), Offensive mindset is a plus, Familiarity with ticketing and workflow tools (e. g. Jira) is a plus, Cantonese is a plus, Diploma - Cyber Security
What You'll Do.
Monitoring and analyzing an organization’s security posture on an ongoing basis
and mitigating security incidents
Serving as the first line of defense in identifying potential threats and vulnerabilities within the organization’s network and Systems
Monitoring for newly triggered alerts
Collecting more information to support the theory of the alerts under assessment
Correlating alerts with other security devices
Investigating the impact of the alerts
Ensuring that shift handovers are conducted clearly and concisely
Participating in shift handover process
Conducting shift handover
Preparing shift handover report
Communicating shift handover information to next shift personnel
Monitoring and investigating if the logs from the stopped flowing to SIEM
Reaching out to the Server owner
Generating a list and working on the list
Reporting the ones resolved
Attending to Jira tickets sent to the client
Responding to inquiry or forwarding the ticket to the respective group/team
Detecting and reporting ticket with log parser issue to Infra/SIEM Engineer
Detecting and reporting ticket with False Alarm to Infra/SIEM Engineer
Reviewing and analyzing alerts generated by security tools and systems
Escalating potential security incidents to higher-level analysts (L2 or L3) based on predefined criteria
How You'll Work.
Team & Collaboration
Working as part of a team of problem solvers; Participating in shift handover process; Communicating shift handover information to next shift personnel; Working with other SOC tiers and cybersecurity teams
Communication Scope
communication skills (English is a must, Cantonese is a plus); ability to document incidents and escalate appropriately
Applying for this Specialists - L1 SOC Analyst role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about PwC?
Real rants from real employees. Read before you apply.