Deloitte Senior Insider Threat Consultant in Arlington, Virginia
Are you a big-picture thinker who connects the dots and identifies the possibilities? Are you passionate about helping Government and Public Services (GPS) organizations prepare for challenges and overcome threats? If so, Deloitte could be the place for you! Join our team of Strategic Risk professionals who work with clients to understand how embracing risk can drive performance. If you seek a role that offers you the opportunity to advise GPS clients through critical and complex issues while allowing you to develop personally and professionally, consider a career in Deloitte Risk & Financial Advisory's Strategic Risk practice.
Work you'll do
•Assist in the development of an Insider Threat program from the ground up, including the development of Concept of Operations and Standard Operating Procedure documents that build on client's existing acceptable use and need to know policies
•Implement federal government and industry standards and best practices regarding insider threat programs, including development and maintenance of OCISO / ESOS programmatic gap analyses and implementation roadmaps
•Assist in the creation of a Gap Analysis on current tool used for the Insider Threat program and make recommendations on industry best practices
•Develop and maintain a convergence model for insider threat mitigation that reduces risk to client's personnel and assets, both overall and within the client's regional operating divisions
•Develop and improve insider threat modeling that leverages User Behavior Analytics (UBA) and automated solutions in place, as well as non-traditional insights
•Develop and expand situational playbooks that leverage client's automated capabilities
•Leverage industry-leading interpersonal skills to coordinate with client's business and technology leaders to develop and maintain programmatic solutions to insider threats
•Lead and assist in the investigation of all incidents involving insider threats
Deloitte's Government and Public Services (GPS) practice - our people, ideas, technology and outcomes-is designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of over 15,000+ professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise.
Our Crisis & Grants Management team delivers innovative, connective, human-centered and sustainable crisis and grants management services to help organizations and communities prepare for, prevent, respond to, recover from and mitigate risks caused by operational disruptions and crises. We help our clients define future state visions, develop strategic roadmaps, establish governance infrastructure, operationalize processes, measure and monitor performance, innovate through technology, and deliver quality program outcomes in an expedited, cost effective and compliant manner. Together we create more resilient communities and responsive ecosystems through incident action planning, grant risk assessments, improving grant processes and operations, future and contingency planning, and data analytics.
•Proficient with discovery systems such as EnCase and cybersecurity tools such as Splunk (including UBA and Phantom), Carbon Black, McAfee ePO and/or SkyHigh, Microsoft Defender ATP, and Microsoft Azure Security & Compliance Center
•5+ years of investigations work experience involving insider threat investigations, counterintelligence, law enforcement, technical investigations, intellectual property investigations, and/or financial fraud investigations
•5+ years of leadership experience including Program Management
•Experience thriving in a heavily regulated environment
• Executive-level client management including presentations and dashboard development
• Strong sense of the requirements from EO 13587 and the DHS Insider Threat Program and experience implementing them as a DHS reporting agency
• Knowledge of global events and cybersecurity threats (e.g., ransomware, deepfakes, social engineering, OSINT)
• Experience in Financial Industry, particularly anti-fraud or internal auditing groups
• Experience and/or certification in digital forensics (cloud, endpoint, mobile)
How you'll grow
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.