SOC Monitoring Analyst

Who are we?


Accenture is a global professional services company with leading capabilities in digital, cloud and security. Find out more about us at www.accenture.com.


Accenture Security


Our cybersecurity business is rapidly growing, and we are hiring mid-level security professionals within a range of disciplines to support our goal and mission of doing our part to secure the most critical systems and organisations for our way of life to thrive in Australia.

Description

Take your career to the next level, by joining our passionate Security team and work on challenging projects that have immediate business impact.

About Accenture Managed Detection Response with Sovereign delivery capability

Organizations around the world rely on Accenture’s MDR to build and maintain resilient incident management programs. We offer both global reach and local presence, with the scale to support even the largest enterprises and government agencies.

Every week, Accenture’s SOC:

Analyze over 125 billion log entries
Identify over 62,000 potential security events
Escalate over 11,000 validated security incidents
Work as part of a world class customer focused team, protecting customers from threats through analysis of log data, providing clear, detailed and timely alerts that can be acted on. The Security Analysis team delivers real time security monitoring and alerting, analysing logs from over 450 supported device types, while adhering to strict service-level agreements. We are the front line in protecting our customers.

Responsibilities

Investigate attacks against customer networks.
Monitor and analyze log data, network traffic and/or alerts generated by a variety of security technologies in real-time; escalate and explain validated security incidents to customers.
Write up security incident reports detailing the threat, its characteristics, and possible remediation activities.
Research new threats and ensure appropriate detection capabilities are in place to identify and respond to these threats.
Routinely review security incidents and other customer deliverables for adherence to the established procedures and guidelines. Document, rectify, and provide feedback to other analysts as necessary.
Ensure the quality and timeliness of the security incident detection and classification service.
Ensure standards and procedures are adhered to within defined SLA’s.
Articulate security issues to customers, both verbally and written.
Identify opportunities for process improvement.
Manage and track customer issues and requests.
Support other teams as needed.
Train Associate Security Analysts and Security Analysts.
Support SOC tour as required.
Train Associate Security Analysts and Security Analysts.
Support SOC tour as required.
Build automated response process using the soar tool
Create playbook to guide incident handling.

Qualifications

Excellent customer service and interpersonal skills.
Passion for cyber security, learning, and knowledge sharing.
Experience in an operational environment, with customer-facing responsibilities.
Previous experience in an information/cyber security role – ideally focused on intrusion detection/security monitoring and analysis.
An excellent understanding of the cyber security threat landscape, including detailed technical knowledge about the most prevalent vulnerabilities, threats, attack methods, and infection vectors.
An excellent understanding of computer networking, including a detailed understanding of TCP/IP and other core Internet protocols.
An excellent understanding of computer and network security.
Excellent technical and troubleshooting skills with the ability to be dynamic and adapt in order to solve complex technical issues with customers and partners.
The ability to communicate clearly at all levels, demonstrating strong verbal and written communication skills.
Experience retrieving information and generating reports using KQL for Sentinel, UDM search query for Google Secops or SPL for Splunk.
Experience using python to automate basic analysis tasks.
Experience with any SIEM products such as: Microsoft Sentinel (highly preferred), Google SecOps and Splunk.
Experience with one or more of the following EDR products would be preferred: Crowdstrike, Microsoft Defender, Carbon Black.
One or more of the following certifications would be desirable: SANS GCIA, SANS GCFA, SANS GCFE, OSCP.
Security Clearance

Current Baseline Security Clearance
Australian Citizens with ability to obtain a clearance considered
Benefits of working at Accenture:


18 weeks paid parental leave
Long short-term career break opportunities
Structured career development program
Local and international career opportunities.
Certified as a Family Inclusive Workplace™
Flexible Work Arrangements - centered around Accenture’s Truly Human ethos and our commitment to supporting the health and wellbeing of our people.
We are proud to be in the top 3 of last year’s Diversity Inclusion Index!

We are a WORK180 Endorsed Employer, to see our benefits and policies click here

All our consulting professionals receive comprehensive training covering business acumen, technical and professional skills development. You’ll also have opportunities to hone your functional skills and expertise in an area of specialization. We offer a variety of formal and informal training programs at every level to help you acquire and build specialized skills faster. Learning takes place both on the job and through formal training conducted online, in the classroom, or in collaboration with teammates. The sheer variety of work we do, and the experience it offers, provide an unbeatable platform from which to build a career.

Accenture is a an EEO and Affirmative Action Employee of Females/Minorities/Veterans/Individuals with Disabilities.


Equal Employment Opportunity Statement for Australia:

At Accenture, we recognise that our people are multi-dimensional, and we create a work environment where all people feel like they can bring their authentic selves to work, every day.

Our unwavering commitment to inclusion and diversity unleashes innovation and creates a culture where everyone feels they have equal opportunity. Our range of progressive policies support flexibility in ‘where’, ‘when’ and ‘how’ our people work to ensure that Accenture is an organisation where you can strive for more, achieve great things and maintain the balance and wellbeing you need.

We encourage applications from all people, and we are committed to removing barriers to the recruitment process and employee lifecycle. All employment decisions shall be made without regard to age, disability status, ethnicity, gender, gender identity or expression, religion or sexual orientation and we do not tolerate discrimination. If you require adjustments to the recruitment process or have a preferred communication method, please email exectalent@accenture.com and cite the relevant Job Number, or contact us on +61 2 +005 5000.

To ensure our workplace is inclusive and diverse we are setting bold goals and taking comprehensive action. To achieve these goals, we collect information that allows us to track the effectiveness of our Inclusion and Diversity programs. Learn how Accenture protects your personal data and know your rights in relation to your personal data. Read more about our Privacy Statement.


#LI_GM Read more