Security Event Monitoring Tier 1 Analyst
Cyber Security Cyber Risk Posted: 02-Aug-2023
Alexandria, Virginia, United States
Arlington, Virginia, United States
Mclean, Virginia, United States
Rosslyn, Virginia, United States
Washington Dc, Virginia, United States
Work you'll do
The Deloitte Security Operations team is responsible for detecting and remediating cyber threats across the internal global Deloitte network. We are seeking a Security Analyst who is passionate about Cyber Security and has a deep interest and curiosity to investigate a variety of different security alerts and hunt for evil. You will work in a world-class Global Security Operations Center, where the main responsibilities will be handling security incidents, performing malware/network analysis, investigating phishing campaigns, and more.
What you can do for Deloitte: Perform initial analysis and investigation into security alerts upon arrival in the global ticketing system Proactively monitor internal networks and remediate incidences for over 300,000 Deloitte employees and 49 subsidiaries across the globe Utilize enterprise Security Information and Event Management (SIEM) and Endpoint Detection & Response (EDR) tools in accordance with in-house playbooks and standard operating procedures (SOPs) Identify and assist with the remediation of phishing campaigns as reported by Deloitte users Advance the Global Security Operations Center’s internal processes and training operations Work alongside international teams in compliance with industry standards Be an active participant in 24x7 operations within a Follow-the-Sun model and 9-hour shifts
The team
Qualifications
- Exposure to any (EDR) tools, (SIEM) solutions, or log aggregation systems
- Fundamental understanding and/or working experience with different attack vectors such as malware, phishing, social engineering, or vulnerability exploitation
- Fundamental understanding and/or working experience with Active Directory, Windows, or Linux system administration
- Fundamental understanding and/or working experience with network services and devices, the OSI model, and TCP/IP protocols
- Excellent written, verbal, interpersonal, and collaborative skills
- Up-to-date knowledge on current cybersecurity news and trends
(Bonus points if you have):
- Bachelor’s degree: degree in computer science, information technology, mathematics, engineering, or other technical degree preferred
- Security+
- Network+
- Scripting experience (JavaScript, PHP, PowerShell, Python)