Skip to main content Skip to Footer

Job Listing

Threat Detection and Response Senior Engineer

Job Location: Prague

Regional Description: Czech Republic

Job Number: 00676524


- Job description

Accenture Cyber Fusion Center in Prague is unique group of around 100 people passionate in Cyber Security. We are currently looking for candidates with premium hand-on cyber security skills for our global security project which focuses on developing threat detection rules and automated response for our global cyber security platform. We are looking for senior candidates who are subject matter experts in this area and who want to grow with the team.
Job Summary: 
The primary responsibilities of the Threat Detection and Response Senior Engineer:
  • Join Accenture’s global Threat Detection and Response team to develop cyber security use cases for our global security platform and MSS SOC
  • Research new threats in collaboration with Accenture’s global Threat Intelligence and Incident Response teams and develop detection rules in Splunk Enterprise Security
  • Leverage MITRE ATT&CK framework to build detection rules and assess customer detection capabilities
  • Develop SOAR playbooks for MSS SOC to help automate incident response
  • Tune the detection rules in Splunk Enterprise Security based on attacks simulated in our development environment
  • Pilot the detection rules and SOAR playbooks in real customer environment and tune them based on results
  • Guide existing customers in selecting most suitable use cases and provide implementation support as a subject matter expert
  • Attend workshops with new customers and help them select initial use cases based on their specific environment and maturity
  • Connect with other team members on daily meetings, share your ideas and receive help from the team leadership
Essential requirements:
  • At least 2 years of hands-on experience as an L3 SOC Analyst, Incident Responder or senior SOC Engineer
  • Highly proficient technical and practical skills in Cyber Security and detection of modern cyber threats
  • Deep technical understanding of how operating systems and enterprise networks function
  • Very good understanding of how modern cyber attacks work and how to detect them at the endpoint and network level
  • At least 2 years of hands on experience with any mainstream SIEM products preferably Splunk Enterprise Security but also others e.g. ArcSight, QRadar, Log Rhythm, etc.
  • Good experience with scripting language is required preferably Python and BASH
  • Very good communication skills and high motivation to deliver high quality content
  • Long-term interest in the Cyber Security field
Nice to have skills:
  • Technical certifications from any mainstream SIEM vendor preferably Splunk
  • Technical cyber security-related certification e.g. SANS, ECSA, CEH
  • Experience with MITRE ATT&CK framework
  • Experience with any mainstream SOAR tool e.g. Splunk Phantom, Demisto, IBM Resilient, etc.
  • University degree in an IT field is a clear advantage

Find a job

Start your search here: Enter job title, skill, experience level or city

Stay in touch

Join the Accenture Talent Connection, follow our Careers blog, or sign up for job alerts.