job description
Are you a cybersecurity leader ready to make a tangible impact in a dynamic, global environment? Accenture is seeking a Security Operations Lead to spearhead our SIEM and Threat Monitoring initiatives in Bali. Join a world-class team driving innovation, safeguarding digital assets, and transforming security operations for Fortune 500 clients.
In this pivotal role, you will oversee the design, implementation, and optimization of our Security Information and Event Management (SIEM) systems, ensuring real-time threat detection, incident response, and compliance with global security standards. You’ll collaborate with cross-functional teams to enhance our threat intelligence capabilities, mitigate risks, and deliver proactive security solutions that align with business objectives.
At Accenture, we empower our leaders to shape the future of cybersecurity. If you thrive in high-stakes environments, possess a strategic mindset, and are passionate about protecting organizations from evolving cyber threats, this is your opportunity to lead with purpose.
Responsibility
- Lead the end-to-end management of SIEM platforms (e.g., Splunk, IBM QRadar, Microsoft Sentinel) to ensure 24/7 threat monitoring and log analysis.
- Develop and refine threat detection rules, correlation policies, and alerting mechanisms to minimize false positives and improve incident response times.
- Oversee security incident investigations, root cause analysis, and remediation efforts in collaboration with global SOC teams.
- Drive the automation of security workflows using SOAR (Security Orchestration, Automation, and Response) tools to enhance efficiency.
- Conduct regular threat intelligence briefings and vulnerability assessments to proactively identify and mitigate risks.
- Ensure compliance with industry standards (e.g., ISO 27001, NIST, GDPR) and internal security policies through audits and gap analyses.
- Mentor and train junior analysts and engineers to build a high-performing security operations team.
- Collaborate with stakeholders to align security strategies with business goals and emerging cybersecurity trends.
Qualifications
- 5+ years of experience in cybersecurity, with at least 3 years in a leadership role managing SIEM and threat monitoring operations.
- Hands-on expertise with SIEM tools (Splunk, QRadar, Sentinel, Elastic SIEM) and EDR/XDR solutions.
- Proven track record in incident response, forensic analysis, and threat hunting.
- Strong understanding of network security, cloud security (AWS/Azure/GCP), and endpoint protection.
- Certifications such as CISSP, CISM, GIAC, or OSCP are highly preferred.
- Excellent analytical, problem-solving, and communication skills to articulate complex security concepts to technical and non-technical audiences.
- Experience with SOAR platforms (e.g., Palo Alto XSOAR, Microsoft Azure Sentinel) and scripting (Python, PowerShell).
- Bachelor’s degree in Computer Science, Cybersecurity, or a related field; advanced degrees are a plus.