Deloitte & Touche LLP seeks a Solution Delivery Advisor in Arlington, VA.

Work You’ll Do

Provide advanced analysis of results reported via information security monitoring solutions and assess escalated outputs and alerts from Analysts. Perform web hunting for new patterns and activities. Advise on content development and testing. Provide advice and guidance on response action plans for information risk events and incidents based on incident type and severity. Ensure that all identified events are promptly validated and thoroughly investigated. Provide end-to-end incident detection and event analysis, and track and resolve escalations using documented procedures. Devise and document new procedures and create or update runbooks/playbooks as directed. Assist Shift Leads and fulfill Shift Lead responsibilities in their absence. Assist Cyber Hunting team with advanced investigations as needed. Provide malware analysis (executables, scripts, documents) to determine indicators of compromise, and create signatures for future detection of similar samples. Continuously improve information security services by identifying and correcting issues or gaps in knowledge (analysis procedures, plays, client network models), false positive tuning, identifying and recommending new or updated tools, content, countermeasures, scripts, and plug-ins. Provide shift status and metric reporting.

Requirements

• Bachelor's (or higher) degree in Computer Science, Engineering, Information Systems, Math, Operations Management, or related field (willing to accept foreign education equivalent).
• One year of security operations center experience.
• Experience must include one year of:
  • Working with SIEM platforms, including Splunk, Qradar, and LogRhythm, and threat intelligence platforms, including ThreatConnect;
  • Performing analysis of network data security including reviews of IDS/IPS systems, network proxy, data loss prevention, web application firewall, and anti-virus;
  • Monitoring, analyzing and resolving Advanced Persistent Threats and Adversary TTPs;
  • Assessing and analyzing attack techniques, including network probing, scanning, DoS/DDoS, man-in-the-middle, and cross-site scripting;
  • Working with networking communication and protocols, including TCP/IP, DNS, HTTP, and HTTPS, and Cloud systems, including AWS, Azure, and GCP;
  • Utilizing enterprise network security architecture and security technologies to secure sensitive data;
  • Applying best practices in cyber security, including multi-factor authentication and Zero Trust Policy;
  • Performing security operations in a Managed Security Services (MSS) environment, including workflows, training, and operational monitoring of workload;
  • Performing endpoint detection and response using Carbon Black and CrowdStrike; and
  • Working with knowledge management systems, including Confluence, MS Teams, or SharePoint, and ticketing systems, including ServiceNow and Jira.

Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture

Our diverse, equitable, and inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Deloitte one of the most rewarding places to work. Learn more about our inclusive culture. Professional development

From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.