Deloitte Cyber Risk - Cyber Threat Specialist Senior in Stamford, Connecticut
Deloitte is one of the leading professional services organizations in the United States, specializing in audit, tax, consulting and financial advisory services with clients in more than 20 industries. We provide powerful business solutions to some of the world s most well-known and respected companies, including more than 75 percent of the Fortune 100.At Deloitte, you can have a rewarding career on every level. In addition to challenging and meaningful work, you ll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and find the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize aspects of your career path, your educational opportunities and your benefits. And our culture of innovation means your ideas on how to improve our business and your clients will be heard.
Our Cyber professionals
Gain access and exposure to enterprise-level software implementations and unique information security challenges which you would otherwise not see at a smaller consultancy
Work at an operational tempo at an unparalleled pace expected of high-caliber Deloitte professionals who have industry experience, confidence, and technical expertise
Have a Variety of day-to-day routines, not the same old repeating tasks, travel to client locations
Strong potential for growth and acceptance of additional responsibilities
The Vigilant Practice
As it becomes increasingly difficult to prevent infiltrations and unauthorized activity, organizations need threat awareness and advanced detection and intelligence solutions. Our VIGILANT services leverage deep experience with analytic and correlation technologies to help clients develop monitoring capabilities focused on critical business processes. By integrating threat data, IT data, and business data, our teams are equipped with context-rich alerts to help prioritize incident handling and streamline incident investigation. Deloitte acquired Vigilant, Inc. in 2013 to strengthen our security monitoring and cyber threat intelligence services.
Work you ll do
The following job duties are necessary to be successful in your role and part of the Vigilant team.
Perform internal and external vulnerability assessments as well as penetration
Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases
Perform network reconnaissance
Perform security forensics on systems
Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
Understand clients' business environment and basic risk management approaches
Demonstrate a general knowledge of market trends, competitor activities, Deloitte & Touche products and service lines
Generate innovative ideas and challenge the status quo
Build and nurture positive working relationships with clients with the intention to exceed client expectations
Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
Communicate to clients and partners aspects of both the product and the implementation at the technical and functional level appropriate for the situation.
Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TMcyber risk programs. Join the team developing the future state of cyber risk solutions.Learn more about Deloitte Advisory s Cyber Risk Services practice.
3-5 years plus experience in the following areas:
Preforming vulnerability assessments and penetration testing using manual testing techniques, scripts, commercial tools and open source tools.
Ability to read, write and modify scripts.
Network reconnaissance and open source intelligence (OSINT) gathering
OWASP, wireless penetration testing, password cracking,
Knowledge of security best practices: NIST, CIS, Cisco, Juniper, Checkpoint, Microsoft, Unix/Linux, etc
Security forensic analysis, virus analysis, malware analysis and honeypots
BA/BS preferred in Computer Science, Computer Engineering, Finance, Information Security, Technology or equivalent work experience
Must be willing to travel up to 80% within North America
Previous Consulting or Big 4 experience preferred.
Certifications such as: CISSP, CISM, or CISA certification a plus
Preferred technology experience with the following:
Penetration Testing: Kali Linux, BackTrack 4/5, SET Toolkit, War Dialing, VOIP testing, SQL Injection, Web Application Testing, Onapsis, Metasploit, Wireless tools, etc
Vulnerability Assessment: Nessus, Qualys, Foundstone, Nexpose, Metasploit, Core Impact, OpenVAS, Kismet, etc
Web Application Testing: App Scan, Hailstorm, Nikto, Grendel, Burpsuite, Acunetix, Qualys, etc
Database Testing: Scuba, SQLninja, AppDetectivePro, Havij, Mysqloit, SQLmap, Onapsis X1 etc
Forensic Software: FTK, F-Response, Encase, TASK
Network Assessment: NMAP, Nipper, Wireshark, TCPdump
Password Cracking: John the Ripper, Medusa, Cain, rainbow tables
How you ll grow
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center.
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.Learn more about what working at Deloitte can mean for you.
Deloitte s culture
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte s impact on the world.
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you re applying to.Check out recruiting tips from Deloitte professionals.
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Disclaimer: If you are not reviewing this job posting on our Careers site (careers.deloitte.com) or one of our approved job boards we cannot guarantee the validity of this posting. For a list of our current postings, please visit us at careers.deloitte.com.
Category: Information Technology