Deloitte Advisory Solution Engineer in Mechanicsburg, Pennsylvania
Deloitte & Touche LLP seeks an Advisory Solution Engineer in Mechanicsburg, PA.
Work You ll Do
Identify and evaluate complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement, and develop information security strategies and plans based upon generally accepted security standards; assist in the selection and tailoring of approaches, methods, and tools to support service offerings or industry projects; use technology-based tools or methodologies to review, design, and/or implement products and services; construct and assess high-level and detailed security programs translating business needs and regulatory requirements into cost effective and risk appropriate controls; identify opportunities to improve engagement profitability, and understand clients business environment and basic risk management approaches; utilize knowledge of business processes, internal control risk management, IT controls, business and information technology management processes, and market trends on client engagements; generate innovative ideas and participate in decision making with engagement management; build and nurture strong client relationships; prioritize objectives and assist with project planning and status reporting; execute advanced services and mentor staff in delivering cyber security vulnerability managed services; review automated application, network, and database security scans, and analyze results to identify false positives; verify test cases for user controlled pen-testing on web application.
Bachelor's (or higher) degree in computer science, computer information systems, mathematics, decision sciences, risk management or related field (willing to accept foreign education equivalent).
Eighteen months of Application and Infrastructure Security Vulnerability Management experience.
Experience must include eighteen months of:
Utilizing cyber security solutions in completing IT security assessments, information systems audits, and information security architectural design and deployments throughout secure software development life cycle;
Evaluating the security of data loss prevention, security incident and event management, access certification, identity management, role management, and access management;
Performing web application, mobile application, and web services security assessments utilizing HPE Webinspect, Burp Suite, Fiddler, and IBM AppScan Standard tools;
Performing source code review and analysis utilizing IBM AppScan Source tool;
Performing infrastructure, network, and database security assessments utilizing Tenable Nessus, NMAP, and Trustwave AppDetective Pro tools;
Assessing, proposing, and executing encryption, application penetration testing, and system hardening;
Evaluating the impact of systems and interpreting the dynamics of new implementations and their impact on internal controls over cyber issues by performing threat modeling analysis and security architecture review;
Assisting with engagement planning, scoping, and reviewing workpapers for quality control;
Performing security architecture review of integrated IT systems; and
Facilitating incident response for security events utilizing Secure Software Enablement (SSE) application, evaluating security vulnerabilities and impact to IT system, and identifying remediation measures.
Position requires approximately 30% travel.
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. at http://www2.deloitte.com/us/en/pages/careers/articles/life-at-deloitte-benefits-and-rewards.html
Deloitte s culture
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte s impact on the world. at http://www2.deloitte.com/us/en/pages/careers/topics/recruiting-tips.html
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you re applying to. We also suggest that you brush up on your behavioral and case interviewing skills and practice discussing your experience and job history with a family member, friend, or mentor. Check out recruiting tips from Deloitte professionals. at http://www2.deloitte.com/us/en/pages/careers/topics/recruiting-tips.html
Category: Accounting & Auditing
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.