Tier 2 Security Event Monitoring Analyst

Cyber Security Cyber Risk Posted: 24-Mar-2023

Same job available in 5 locations

Alexandria, Virginia, United States

Arlington, Virginia, United States

Mclean, Virginia, United States

Rosslyn, Virginia, United States

Washington Dc, Virginia, United States

Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization.

Work you'll do

The Cybersecurity organization delivers a comprehensive set of cybersecurity services to Deloitte member firms through regional delivery hubs and a Global Fusion Center. 

We are seeking an Tier 2 Analyst to join the team. The role focusses on providing Event Monitoring services and serves as an intermediate escalation point identifying and addressing potential information security incidents.
 
Responsibilities
 
Strategic
  • Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity
  • When necessary, and with the Manager’s approval, devise and document new procedures Operational
  • Advanced analysis of the results of the monitoring solutions, assess escalated output from Level 1 Analysts
  • Web hunting for new patterns/activities
  • Provide intermediate event analysis, incident detection, and escalate as needed to Level 3 Analyst with documented procedures
  • Remain current on cyber security trends and intelligence (open source and commercial) in order to guide the security analysis & identification capabilities of the SOC team
  • Ensures that all identified events are promptly validated and thoroughly investigated
  • Responsible for identifying training needs for the junior analysts
  • Oversee documentation owned by the SOC team including but not limited to Standard Operating Procedures (SOPs) and Operational Level Agreements (OLAs) Relationship Management
  • Report progress and escalate in a timely manner to the AMER L3 Analyst
  • Provide oversight and guidance to Level 1 Analysts to monitor, detect, analyze, remediate, and report on cybersecurity events and incidents
  • Coordinate with the Security Tool specialists to implement new or enhanced content

The team

The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte’s global network of firms around the globe.

Qualifications

 
Required:
  • Minimum of 2 years of combined experience in the Information Security / Cybersecurity domain with a focus on security event monitoring
  • Proven track record and experience of the following in a highly complex and global organization:
  • Working with leading SIEM technologies, IDS/IPS, network- and host- based firewalls, data leakage protection (DLP), DAM (Database activity monitoring)
  • In depth, hands-on experience with at least two of the following technologies: Unix administration, Windows Server administration, Active Directory, Windows Workstation, Routers /Switches management, Firewall Management, SANS/NAS, Web servers, IAM/AAA, IDS/HDS, System vulnerability scanning tools, Application/Database vulnerability scanning tools, mobile device analysis or Secure coding o
  • Analyzing possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc.and coordinating remediation actions as necessary Certification
  • Professional security certification preferred, such as Certified Intrusion Analyst (GIAC), CISSP, Certified Ethical Hacker (CEH), Certified Expert Penetration Tester (CEPT)
  • Professional security management certification desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials Skills/abilities
  • Willing to work on any of three 10 hour shifts to offer 24 hours support service
  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate strategic information security topics, policies and standards as well as risk-related concepts to technical and nontechnical audiences at various hierarchical levels
  • Understanding of network devices such as routers, switches. TCP/IP knowledge
  • Understanding of common network services (web, mail, FTP, etc.), network vulnerabilities, and network attack patterns
  • Experience with leading SIEM solutions including Splunk, ArcSight ESM and Loggers
  • Experience with ticketing systems
  • Intermediate knowledge in system security architecture and security solutions
  • Ability to travel as needed up to 25%
 
Preferred:
  • Bachelor’s degree:degreein computer science, mathematics, engineering, or other technical degree preferred
  • Master’s degree preferred

Our culture

At Deloitte Global people are valued and respected for who they are – with opportunities to bring their unique perspectives, talents and passions to business challenges. Our global workspace creates room for individuality and collaboration. Ours is an inclusive, supportive, connected culture with a focus on development, flexibility, and well-being. This culture makes Deloitte Global one of the most rewarding places to work, and to transform your career.

Professional development

From entry-level employees to senior leaders, we believe in investing in you, helping you identify and hone your unique strengths at every step of your career. We offer opportunities to build new skills, take on leadership opportunities, and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

Benefits

At Deloitte, we value our people and offer employees a broad range of benefits. Our Total Rewards program reflects our continued commitment to lead from the front in everything we do—that’s why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being.


At Deloitte Global, we know we’re at our best when we look out for one another; prioritize respect, fairness, development and wellbeing; foster an inclusive culture and embrace diversity in all forms. All qualified applicants will receive consideration for employment regardless of their background, experience, identity, ability or thinking style, and if you need assistance or an accommodation during the application process for accessibility reasons this is available upon request. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.
99000
165000
88800
148000
80400
133900
Back to job list