SOAR Specialist

Line of Service Advisory

Industry/Sector Not Applicable

Specialism Managed Services

Management Level Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In cybersecurity incident management at PwC, you will focus on effectively responding to, and mitigating, cyber threats, maintaining the security of client systems and data. You will be responsible for identifying, analysing, and resolving security incidents to minimise potential damage and protect against future attacks.

Meaningful work you’ll be part of

As a SOAR Specialist, you’ll design, develop, and maintain playbooks and connectors in Chronicle SOAR, leveraging Python to automate incident response and threat detection. You’ll collaborate across security, infrastructure, and application teams to deliver scalable automation solutions, and contribute to the continuous improvement of our CI/CD pipeline for SOAR deployments. Responsibilities include but are not limited to:

• Build and maintain playbooks in Chronicle SOAR to automate incident response and threat detection workflows.
• Create and manage connectors for integrating SOAR with SIEM, EDR, CTI tools, and other security platforms.
• Use Python to script automation tasks, optimize workflows, and enhance detection/remediation processes.
• Contribute to continuous improvement of SOAR deployments through CI/CD pipelines and version control (Git).
• Understand and implement incident response processes, ensuring playbooks align with SOC operations and compliance standards.
• Work closely with security operations, infrastructure, and application teams to deliver scalable automation solutions.
• Apply enterprise change management practices and maintain clear documentation for playbooks, integrations, and processes.

• Bachelor’s degree in computer science, Information Security, or related field.
• Experience in security automation or SOAR platforms (Chronicle SOAR preferred) and familiarity with Chronicle SOAR APIs and integrations.
• Proficiency in Python for automation and scripting.
• Experience with CI/CD pipelines and version control (Git).
• Strong analytical and problem-solving skills. Clear, articulate written and verbal communication skills.
• Ability to work collaboratively across technical and business teams with knowledge of change management practices in enterprise environments.
• Experience developing and maintaining SOAR playbooks and connectors, with exposure to cloud environments (GCP, AWS, Azure).
• Understanding of incident response processes and security operations.
• Security certifications (e.g., CISSP, GCIH, GCFA) are an asset.

The salary range for this position is $58,400 - $97,500. The posted salary range represents the expected hiring range for PwC locations in major city centres. Given our national recruiting approach, ranges may vary for positions in other locations. At PwC Canada, base salary is determined by your skills, experience, qualifications and work location. In addition to base salary, eligible employees may have opportunities to participate in variable incentive pay programs which are designed to reward individual and firm-wide achievements. We are committed to offering competitive compensation and adhere to all relevant pay transparency legislation. During the hiring process, our Talent Acquisition team will provide details about our comprehensive total rewards package.

Why you’ll love PwC

We’re inspiring and empowering our people to change the world. Powered by the latest technology, you’ll be a part of diverse teams helping public and private clients build trust and deliver sustained outcomes. This meaningful work, and our continuous development environment, will take your career to the next level. We reward your impact, and support your wellbeing, through a competitive compensation package, inclusive benefits and flexibility programs that will help you thrive in work and life.

Learn more about our Application Process and Total Rewards Package at: https://jobs-ca.pwc.com/ca/en/life-at-pwc

PwC Canada acknowledges that we work and live across Turtle Island, on the land that is now known as Canada, which are the lands of the ancestral, treaty and unceded territories of the First Nations, Métis and Inuit Peoples. We recognize the systemic racism, colonialism and oppression that Indigenous Peoples have experienced and still go through, and we commit to allyship and solidarity.

Education (if blank, degree and/or field of study not specified)

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Security certifications (e.g., CISSP, GCIH, GCFA) are an asset.

Additional notes

PwC Canada is committed to cultivating an inclusive, hybrid work environment. Exact expectations for your team can be discussed with your interviewer.

This position ensures continuity and upholds our standards of excellence following the departure of a valued team member.