Vaughan, Ontario, Canada
All Available Locations:
External Posting Description 13;
Be at the forefront of one of the most fast:paced and influential industries in the world. Deloittes cyber risk practice helps clients remain vigilant and defend against emerging threats and cyber:attacks with intelligent, secure and resilient solutions. As world leaders in security consulting, were continuing to build powerful teams of multi:disciplinary professionals who want to work with the best in the business, whether it be in our advisory services or managed security operations. So join Deloitte and see what it means to love the company you keep. Click here to find out more about our Cyber Risk Services.
Passionate about security operations? We have an immediate opportunity for a junior / senior Security Operation Centre (SOC) yst to join our team Reporting to the SOC manager at our Cyber Intelligence Centre in Vaughan, ON, the in bent is self:motivated, energetic, driven for success and results oriented. In:depth knowledge of security monitoring, incident handling, security operations processes, threat management, and common industry technologies are critical to the successful delivery and execution of managed security services offered by Deloitte. The yst will also be a key player in building world:class security operations capability that is aligned with our strategic direction and that helps the Firm better deliver on new and existing engagements.
:Review security:related events, assessing risk and validity, and reporting of findings
: yze network traffic to assist in testing new signatures for production deployment to client environments
: yze additional log, forensic investigation procedures and protocols.
:Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards
:Facilitate use of technology:based tools or methodologies to review, design and/or implement products and services
:Achieve expertise in a specialization and a strong reputation as a business advisor
:Create a learning environment through leadership
:Work closely with your team to exceed our clients expectations while identifying and mitigating business risks associated with projects.
Incident Response and Investigation:
:Log collection, incident and threat detection
:Advise and recommend on defensive strategies based on the clients existing technical security controls in relation to their current risk appetite.
:Evidence collection, threat and risk management
:Incident management methodologies
:Review security:related events, assessing severity, criticality and priority
Monitor and report based on client SLAs with an emphasis on quality and accuracy.
Contribute to the SOC strategy by:
:Refining SOC organizational interface processes and procedures
:Ensuring SOC alignment with clients IT service management
:Assist the client with SOC strategic planning and process enhancements 13;
External Posting Qualifications 13;
:A Bachelors Degree / Diploma in a relevant area of study with a preference for Computer Science or Computer Engineering
:Level 3 yst : 5 or more years experience
:Good working knowledge of:
:Server platforms (UNIX, Windows etc)
:Security (Firewalls, IDS/IPS, proxy systems etc.
:Direct prior experience with either ArcSight, Q1 Labs, or other SIEM Platform
:Prior experience as a SOC yst ideally working in a CIRT
:Good working knowledge of Linux system configuration
:Occasional travel to client sites across Canada
:Industry certifications (CISSP/GIAC) are a strong asset
:Level 3 yst : Experience with malware ysis techniques
:Good understanding of System Development Lifecycle