Manager

 What impact will you make?

Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivaled opportunities to succeed and realize your full potential

Deloitte is where you’ll find unrivaled opportunities to succeed and realize your full potential.

The Team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks.

Work you’ll do

As a part of our Risk Advisory team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. The Cyber Risk Services – Cyber Vigilance & Operations practice helps organizations in assessing and establishing their cyber security appetite via the Secure. Vigilant. Resilient. Programs, and also in assisting in the ongoing management, maintenance, and adaptation of their programs, as the business and threat environments change. The Cyber Risk Services – CVO team delivers service to clients through following key areas of cyber security:

•Understanding of security and privacy controls and the risk management process focused on Cyber Threat Management services.

• Understand basic business and information technology management processes Knowledge in one or more Cyber Threat Management domains such as: Assessment Services, Application Security, Vulnerability Management, Infrastructure Security, Threat Management, Cyber Operations/Fusion Managed Services, Incident Management and Data Protection solutions.Direct prior experience with core security technologies (SIEM, firewalls, IDS/IPS, HIPS, proxies, vulnerability scanners, AV, etc.)

• Prior experience as a SOC Analyst ideally working in a CIRT. Familiarity with industry standards and frameworks such as OWASP, CIS, NIST ISO/IEC 17799, etc.

• Demonstrates basic knowledge of security and privacy controls and risk management processes.

• Experience with vulnerability assessment tools (such as: Nessus, nmap, Appscan, etc.) and Infrastructure Security solutions.

• Develops an understanding of Cyber Threat Management's methodologies, frameworks and tools. Applies the basic Network concepts (TCP/IP) and Application programming knowledge during Cyber Threat Management services. Concentrates on capability building for self.

• Explore/learn new Threat management technologies with guidance from team leads.

• Support in identifying new threat use cases, etc. Raise technical risks and assist in process compliance activities

The key skills required are as follows:

• Good working knowledge of one or more of the following topics:
  • Operating systems (UNIX, Linux, Windows)
  • Networking
  • Security technologies (SIEM, firewalls, IDS/IPS, HIPS, proxies, vulnerability scanners, AV, etc.)
• Penetration testing and ethical hacking
• Vulnerability assessment and management
• Industry certifications (CISSP, GIAC – GREM/GCIH/GCIA/GCFA) are a strong asset
• Basic expertise in scripting languages (Python, shell, etc.)
• Strong communication skills (written & verbal)
• Subject matter knowledge in Comp Science & Electronics
• Working knowledge of computer systems (operating systems, databases, applications etc.)
• Working knowledge of TCP/IP and networking concepts
• Basic technical documentation skills and understanding of SDLC processes

Level: Con/ AM/ DM/ Manager/ SM

Qualifications

• B.Tech / BE / M.Tech / MCA /MBA/MS
• Preferred: Qradar, Splunk, ArcSight Certification, CEH, SANS
• Desirable: OSCP, Security+, SSCP, CISSP, CISM