Threat Hunting

Service Summary

Understanding your organization's threat landscape is a key in preventing Cyber attacks. Organizations both Japanese or foreign owned operating in Japan carry the same risk when it comes to their digital technology footprint. The risk can increase when networks span multiple countries with varying levels of controls. Threat hunting seeks out potential threats utilising; intelligence, scenarios, analytics, tools and techniques.

PwC’s Threat Hunting service incorporates the analysis of information from a variety of sources (such as server log data) by experienced Threat Hunters who know what to look for. The team will utilise Threat Intelligence of known threat actors to your organization and apply their TTP (tools, techniques and procedures) and known IOCs (Indicators of Compromise) to determine potential issues or evidence of malicious actors across your environments.

PwC’s Threat hunting services can assist across multiple areas depending on our organization's current maturity level with respect to detecting Cyber attacks.

Service Overview

Our Threat Hunting team can provide your organization a number of services to help you be better informed and prepared to prevent potential Cyber attacks. We can help with 

Threat Hunting Service - Our team will collect available logs from your environment. These logs can include but not limited to; EDR, Anti virus, VPN, Email Security, Firewalls, DLP, AD, Windows Event Logs, DNS, and Network Border Devices. We will ingest this information into our big data platform and extract indicators and analyse these against known TTPs and IOCs for your organization.

SOC Monitoring - Our team can augment your in-house SOC / CSIRT or provide dedicated monitoring services. We will provide 24x7 monitoring alerting relevant stakeholders when we detect any potential threats to your organization.

SIEM | Endpoint Detection & Response support - Our team can help your organization design, implement and where necessary operate your organization’s SIEM and EDR solution. We will tune these platforms and tools to ensure that the appropriate information is being collated and preserved for hunting and analysis activities.

SOAR (Security Orchestration, Automation, and Response) - Our team can perform a review across your organization's environment to identify the current people, process and technologies in place to detect, analyse and respond to Cyber security threats. We will then provide options and potential solutions on how your organization can automate the responses to particular threats to relieve manual human effort.

Our experienced bi-lingual team has a broad range of knowledge across multiple Security products and can help regardless of the products and toolsets your organization uses. PwC Japan can leverage our global teams across APAC, AMERICAS and EMEA to help your organization on the ground as necessary.

PwC rated as a Leader in Cybersecurity Consulting Services Providers in Asia Pacific

PwC announced that it was cited as a Leader in The Forrester Wave™: Asia Pacific Cybersecurity Consulting Providers Q4 2019.

Forrester notes that: “Innovation, vision, and the ability to engage executives are key differentiators.”

Find out more


{{filterContent.facetedTitle}}

{{contentList.dataService.numberHits}} {{contentList.dataService.numberHits == 1 ? 'result' : 'results'}}
{{contentList.loadingText}}