Tier 1 Security Event Monitoring Analyst

Want to make an impact that matters? Consider Deloitte Global.

Work you'll do:

We are seeking an Tier 1 Security Event Monitoring Analyst to join the team. The role focusses on providing Event Monitoring services and serves as an intermediate escalation point identifying and addressing potential information security incidents.

Strategic
* Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity
* When necessary, and with the Manager's approval, devise and document new procedures

Operational
* Advanced analysis of the results of the monitoring solutions
* Web hunting for new patterns/activities
* Provide intermediate event analysis, incident detection, and escalate as needed to Level 2 and 3 Analyst with documented procedures
* Remain current on cyber security trends and intelligence (open source and commercial) in order to guide the security analysis & identification capabilities of the SOC team
* Ensures that all identified events are promptly validated and thoroughly investigated

What you'll be part of - our Deloitte Global Culture:

At Deloitte, we expect results. Incredible-tangible-results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and implement global strategies and provide programs and services that unite our network.

In Deloitte Global, everyone has opportunities. We see the importance of your perspective and your ability to create value. We want you to fit in-with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out-with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark. The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte's global network of firms around the globe. Education
* Bachelor's degree: degree in computer science, mathematics, engineering, or other technical degree preferred
* Master's degree preferred

Work experience
* Minimum of 2 years of combined experience in the Information Security / Cybersecurity domain with a focus on security event monitoring
* Proven track record and experience of the following in a highly complex and global organization
* Working with leading SIEM technologies, IDS/IPS, network- and host- based firewalls, data leakage protection (DLP), DAM (Database activity monitoring)
* In depth, hands-on experience with at least two of the following technologies: Unix administration, Windows Server administration, Active Directory, Windows Workstation, Routers /Switches management, Firewall Management, SANS/NAS, Web servers, IAM/AAA, IDS/HDS, System vulnerability scanning tools, Application/Database vulnerability scanning tools, mobile device analysis or Secure coding
* Analyzing possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc. and coordinating remediation actions as necessary

Certification

* Professional security certification preferred, such as Certified Intrusion Analyst (GIAC), CISSP, Certified Ethical Hacker (CEH), Certified Expert Penetration Tester (CEPT)
* Professional security management certification desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials

Skills/abilities

* Willing to work on any of three 10 hour shifts to offer 24 hours support service
* Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate strategic information security topics, policies and standards as well as risk-related concepts to technical and nontechnical audiences at various hierarchical levels
* Understanding of network devices such as routers, switches. TCP/IP knowledge
* Understanding of common network services (web, mail, FTP, etc.), network vulnerabilities, and network attack patterns
* Experience with leading SIEM solutions including Splunk, ArcSight ESM and Loggers
* Experience with ticketing systems

How you'll grow:

Deloitte Global inspires leaders at every level. We believe in investing in you, helping you embrace leadership opportunities at every step of your career, and helping you identify and hone your unique strengths. We encourage you to grow by providing formal and informal development programs, coaching and mentoring, and on-the-job challenges. We want you to ask questions, take chances, and explore the possible.

Benefits you'll receive:

Deloitte's Total Rewards program reflects our continued commitment to lead from the front in everything we do-that's why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being needs. We provide the benefits, competitive compensation, and recognition to help sustain your efforts in making an impact that matters.

Corporate citizenship:

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. #LI-Hybrid Hybrid work, remote may be an option