Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to be involved in delivering Fusion Managed / Security Operations Center (SOC) Services including identifying unauthorized activities and intrusions in their networks in real time? Are you excited about rapidly changing operational environments, learning what you need to get the job done, and producing accurate and timely results?
If yes, then Deloitteâs Fusion Managed Services (FMS) team could be the place for you! Transparency, innovation, collaboration, sustainability: these are the hallmark issues shaping cyber initiatives today. Deloitteâs FMS business is passionate about making an impact with lasting change.Â Delivering our industry leading services requires fresh thinking and a creative approach. We collaborate with teams from across our organization in order to bring the full breadth of Deloitte, its commercial and public sector expertise, to best support our clients.Â Our aspiration is to be the premier integrated services provider in helping to transform the cyber security services marketplace.
Our team is client focused and mission driven.Â As a Cyber Risk Fusion Threat Intelligence Analyst in Deloitte's Fusion Managed Services, youâll work with our diverse teams of passionate professionals to help solve for some of todayâs toughest cybersecurity challenges to enable or clients to achieve business growth and manage risk.
Work youâll do
The key job responsibilities will be to:
Perform threat research and analysis to collect intelligence on the threat landscape for clients, using sources that include but are not limited to Open-source security intelligence, Threat information shared through clientâs network, law enforcement, and industry sources, client specific learning based on security/contextual data about the current state of clientâs enterprise network
Utilize the threat intelligence platform to understand adversary tools, techniques, procedures, threat actors and campaigns, and malicious domains, URLs, IPs, and sites
Provide notifications to vulnerability management and L3 team on new indicators of compromise when available and recommended courses of action to support response activities
Provide a feed of threat observables from threat intelligence platform for ingestion into the SIEM tool
Perform weekly and monthly threat summary calls with broader operations team and client teams to review trends and outstanding issues
Document report on the threat landscape including major threats, vulnerabilities, trends, attack vectors, and other indicators to support threat monitoring and vulnerability management
As needed, coordinate with the CSIRT team to contain the incident and to mitigate the threat upon notification of incident
Assist with the review and maintenance of Cyber Incident Response Plan and response playbooks as needed
Participate in tabletop exercises and red teaming exercises and assist with preparation for the exercises as needed
Perform periodic health monitoring and maintenance of the Threat Intelligence Tool
Monitor and assist in certificate renewal of threat intelligence tools
Coordinate with solution vendor for product upgrades/security patches, and troubleshooting product-related defects and issues
Perform upgrades and deploy patches post impact analysis in non-production and production environment in accordance with change management protocol
WorkÂ with/supportÂ infrastructure team for any hardware/operating system (OS) related upgrades and issues impacting the solution
Interact with clients, including working with client teams in an onsite and offshore delivery model
Lead and work closely with vendor alliances
Manage project deliverables and team
Manage and mitigate project risks
Â Enabling business development by assisting in request for proposal and sales processes
Lead process compliance activities by identifying and driving initiatives that are relevant for the project delivery and help factor reusability and related benefits
Contribute to eminence activities, such as whitepapers pertaining to Threat Intelligence
Internal Number: 12309630
About Deloitte Consulting
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Deloitte is led by a purpose: to make an impact that matters. This purpose... defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to.