Cyber Risk Fusion Managed Services Senior Solution Delivery Lead

Deloitte & Touche L.L.P. Arlington , VA 22201

Posted 2 months ago

Cyber Risk Fusion Managed Services Level 2 Analyst

Consider joining Deloitte & Touche LLP's growing Cyber Risk Cyber Risk Fusion Managed Services. Our CyberSphere analysts and engineers assist our clients with identifying unauthorized activities and intrusions in their networks in real time.

Work you'll do

The Level 2 Analyst conducts network analysis of targets, operates daily open source research, resulting in various reports and alerts, and possesses extensive knowledge on network, endpoint, threat intelligence, as well as the functioning of specific applications or underlying IT infrastructure, and has some experience with forensics tools, malware analysis, closely involved in developing, tuning and implementing threat detection analytics.

The Level 2 Analyst position supports the Security Operations Center (SOC) as an intermediate escalation point identifying and addressing potential information security incidents.

  • Advanced analysis of the results of the monitoring solutions, asses escalated output from Level 1 Analysts

  • Web hunting for new patterns/activities

  • Provides advice and guidance on the response action plans for information risk events and incidents based on incident type and severity

  • Ensures that all identified events are promptly validated and thoroughly investigated

  • Provides intermediate event analysis, incident detection, and escalation to Level 3 Analyst or SOC Manager using documented procedures

  • When necessary, and with the SOC Managers approval, devise and document new procedures

  • Document incident analysis reports

The team

Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory's Cyber Risk Services practice.

Qualifications

Required:

  • Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future

  • BA or BS in Computer Science or Information Management desirable or equivalent work experience

  • Additional certification include Certified Intrusion Analyst (GIAC), CISSP, Certified Ethical Hacker (CEH), Certified Expert Penetration Tester (CEPT)

  • Willing to work any of the three 10 hour shifts to offer 24 hours support service

  • Two

  • Five years of information security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, log analysis, intrusion detection. Or, Two Five years' experience of one of the following: -Network operations or engineering

  • System administration on Unix, Linux, or Windows

  • Experienced with the following technologies: leading SIEM technologies, IDS/IPS, network- and host- based firewalls, data leakage protection (DLP), DAM (Database activity monitoring)

  • Understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc.

  • Understanding of network devices such as routers, switches. TCP/IP knowledge

  • Understanding of common network services (web, mail, FTP, etc.), network vulnerabilities, and network attack patterns

  • Experience with leading SIEM solutions including ArcSight ESM and Loggers

  • Experience with ticketing systems

  • Intermediate knowledge in system security architecture and security solutions

Preferred:

  • Excellent interpersonal and organizational skills

  • Excellent oral and written communication skills

  • Proven analytical and problem solving skills

How you'll grow

At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center.

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.

Deloitte's culture

Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.

Corporate citizenship

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte's impact on the world.

Recruiter tips

We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you're applying to. Check out recruiting tips from Deloitte professionals

As used in this posting, "Deloitte Advisory" means Deloitte & Touche LLP, which provides audit and enterprise risk services; Deloitte Financial Advisory Services LLP, which provides forensic, dispute, and other consulting services; and its affiliate, Deloitte Transactions and Business Analytics LLP, which provides a wide range of advisory and analytics services. Deloitte Transactions and Business Analytics LLP is not a certified public accounting firm. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. These entities are separate subsidiaries of Deloitte LLP.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Requisition code: E20NATFA6SS900FC


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Risk Fusion Managed Services Solution Delivery Lead

Deloitte & Touche L.L.P.

Posted 2 days ago

VIEW JOBS 11/16/2019 12:00:00 AM 2020-02-14T00:00 Cyber Risk –Fusion Managed Services Threat Hunter The Fusion Managed Services Threat Hunter researches relevant threat actors, attack vectors, and behaviors pertinent to client industries. They possess extensive knowledge on network, endpoint, threat intelligence, as well as the functioning of specific applications or underlying IT infrastructure, and have experience with SIEM technologies, EDR solutions, forensics tools, malware analysis. An understanding of network traffic, well known ports, network assets, web traffic, protocols, and basic requests such as HTTP/S is mandatory. Programming experience is a plus! Work you'll do * Research trending campaigns, attack vectors, and search for these in client environments. * Be tool agnostic – our Threat Hunting tools may differ from client to client, and we value concepts over tools. The ideal candidate must possess an acute ability to adapt to any tool. * Maintain awareness of the client's technology architecture, known weaknesses, the architecture of the security solutions used for monitoring, imminent and pervasive threats as identified by client threat intelligence, and recent security incidents. * When needed, work with alerts from the SOC Analysts, to perform in depth analysis and triage threat activity based on host and network activity, traffic, and protocol analysis to identify infection vectors, the extent of the infection, and prepare high quality reports based on findings. * Respond to client specific investigation requests around software/application vulnerabilities, zero days, and security incidents. * Document all actions taken in a ticketing system. * Present threat hunt findings to clients occasionally – proven presentation and communication skills are essential. * Serve as a subject matter expert in at least one security-related functional area (e.g. specific malware solution, python programming, digital forensics, etc.) * Adhere to internal operational security and other Deloitte policies. * Hunt for new patterns, activities, and ever-changing tactics associated with advanced threat actors. * Perform ad hoc SIEM content development and testing. * Provide recommendations for remediation of assets identified during hunting/minimize risk associated with threat. These include but are not limited to security upgrades, configuration changes, and SIEM content recommendations. * When necessary, devise and document new techniques, automation, and procedures along with the service leadership. * Foster a culture of collaboration and build team members' strengths. * Collaborate with the service leadership to help grow the service. The team Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory's Cyber Risk Services practice. Qualifications Required: * BA or BS in Computer Science or Information Management and relevant work experience. Relevant certifications such as Comp TIA Security+, Certified Intrusion Analyst (GIAC), CISSP, Certified Ethical Hacker (CEH). Excellent spoken and written communication skills. Strong analytical and problem-solving skills. Two or more years working in security information and/or technology engineering support experience. Experience with the following technologies: leading SIEM technologies, EDR solutions; Knowledge of IDS/IPS, Ant Virus Solutions, network- and host- based firewalls, data leakage protection (DLP), web proxies, DNS, windows/Unix system administration. Understanding of possible attack activities such as network reconnaissance probing/ scanning, DDOS, malicious code activity, etc. Understanding of common network elements devices such as routers, switches. Understanding of basic networking protocols such as IP, DNS, HTTP, FTP, SMTP etc., and the OSI model. Basic knowledge in system security architecture and security solutions. * Preferred: * Certification include Certified Intrusion Analyst (GIAC), Continuous Monitoring (GMON), CISSP, Certified Ethical Hacker (CEH) Excellent interpersonal and organizational skills. Basic knowledge in programming languages such as Python, Java or Ruby. Strong analytical and problem-solving skills. Self-motivated to improve knowledge and skills. A strong desire to understand the what as well as the why and the how of security incidents. Works well both in a team environment and independently. How you'll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte's culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte's impact on the world. Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you're applying to. Check out recruiting tips from Deloitte professionals As used in this posting, "Deloitte Advisory" means Deloitte & Touche LLP, which provides audit and enterprise risk services; Deloitte Financial Advisory Services LLP, which provides forensic, dispute, and other consulting services; and its affiliate, Deloitte Transactions and Business Analytics LLP, which provides a wide range of advisory and analytics services. Deloitte Transactions and Business Analytics LLP is not a certified public accounting firm. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. These entities are separate subsidiaries of Deloitte LLP. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law. Requisition code: E20NATFA6SS940FTH * * * * * * Deloitte & Touche L.L.P. Arlington VA

Cyber Risk Fusion Managed Services Senior Solution Delivery Lead

Deloitte & Touche L.L.P.