Job Title:  RA| Cyber Operate | Security Operations| AM | Thane

What impact will you make?

Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where youll find unrivaled opportunities to succeed and realize your full potential

The Team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilientnot only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks.

Work youll do

As a part of our Risk Advisory team youll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Youll:

Summary

The role requires efficient incident response and digital forensics skills to minimise the impact of cyber risks. The individual will oversee Security monitoring, Security tools Operations, Security incidents, ensure incidents are managed effectively and reported to stakeholders. This role primarily consists of work on escalated security incidents and to conducting thorough response activities on behalf of the client

 Candidate required to work in complex security environment in SOC team to design, communicate and execute incident response, containment and remediation plans. Support incident response team analysts and incident management teams. Analyse tools, processes, and procedures for responding to cyber intrusions and come up with new methods for detecting cyber adversaries. 

This role requires candidates to work in a 24/7 support model with rotating shifts

J         Job Description:

• Incident detection by monitoring the SIEM console (IBM Qradar), Rules, Reports and Dashboards.

• Assist L1 team in analysis, investigation and recommendations as required

• Comfortable with working in rotational shifts 24x7.

• Review of the alerts as a second screening to ensure no alerts are missed

• Respond to queries on the reported incidents

• Incident escalation handling

• Deep dive investigation of the incidents, understanding the trend and fine-tune the rules as required

• Daily tracking of the incidents SLA

• Review Daily Incident Summary Reports

• Prepare & send Weekly Status Reports

• Prepare & send Monthly Status Reports

• Review changes/service requests and inform Operations Manager

• Contribute to Playbooks creation.

          Skills required

• Professional with minimum 3-5 years of experience in SOC performing various roles (inclusive of L1 & 12)

• Solid understanding of MITRE ATT&CK, NIST cyber incident response framework and Cyber kill chain.

• CCNA, CEH, CompTIA Security+ Plus will add preference

• Understanding of Threat Hunting and threat Intelligence concepts and technologies

• Experience of leveraging technical security solutions such as SIEM, IDS/IPS, EDR, vulnerability management or assessment, malware analysis, or forensics tools for incident triage and analysis.

• Deep understanding of most common OS (Windows, MacOS, Linux, Android, iOS) and their file systems etc.

• Experience of enterprise level cloud infrastructure such as AWS, MS Azure, G Suite, O365 etc.

• Experience of malware analysis and understanding attack techniques.

Job Description:

• Incident detection by monitoring the SIEM console (IBM Qradar), Rules, Reports and Dashboards.

• Assist L1 team in analysis, investigation and recommendations as required

• Comfortable with working in rotational shifts 24x7.

• Review of the alerts as a second screening to ensure no alerts are missed

• Respond to queries on the reported incidents

• Incident escalation handling

• Deep dive investigation of the incidents, understanding the trend and fine-tune the rules as required

• Daily tracking of the incidents SLA

• Review Daily Incident Summary Reports

• Prepare & send Weekly Status Reports

• Prepare & send Monthly Status Reports

• Review changes/service requests and inform Operations Manager

• Contribute to Playbooks creation.

Skills required

• Professional with minimum 3-5 years of experience in SOC performing various roles (inclusive of L1 & 12)

• Solid understanding of MITRE ATT&CK, NIST cyber incident response framework and Cyber kill chain.

• CCNA, CEH, CompTIA Security+ Plus will add preference

• Understanding of Threat Hunting and threat Intelligence concepts and technologies

• Experience of leveraging technical security solutions such as SIEM, IDS/IPS, EDR, vulnerability management or assessment, malware analysis, or forensics tools for incident triage and analysis.

• Deep understanding of most common OS (Windows, MacOS, Linux, Android, iOS) and their file systems etc.

• Experience of enterprise level cloud infrastructure such as AWS, MS Azure, G Suite, O365 etc.

• Experience of malware analysis and understanding attack techniques.

How you’ll grow

At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn.

We offer opportunities to Risk Advisory to help build world-class skills in addition to hands-on experience in the global, fast-changing business world.

From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career.

Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our purpose Deloitte is led by a purpose: To make an impact that matters.

Every day, Deloitte people are making a real impact in the places they live and work.

We pride ourselves on doing not only what is good for clients, but also what is good for our people and the communities in which we live and work—always striving to be an organization that is held up as a role model of quality, integrity, and positive change. Learn more about Deloitte's impact on the world

Recruiter tips

We want job seekers exploring opportunities at Deloitte to feel prepared and confident.

To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals

Shweta Das

Talent Acquisition | Risk Advisory

Mumbai- IThink, Lodha Amara IThink Tower,

Kolshet Road,Sandoz Baug, Thane West, Maharashtra 400607

shwedas@deloitte.com | www.deloitte.com