Deloitte Jobs

Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.

Work you'll do:

Reviewers are integral to conducting inspections of environments across the Intelligence Community (IC). They are responsible for:

• Interacting with leadership and site technical staff in advance of conducting inspections to facilitate scoping, data to support security controls assessment input, and execution of operational inspection plans

• Responsible for interviewing organizational subject matter experts in conducting STIG, SRG, and IC policy checklists

• Collect data in support of reviewing a comprehensive Threat Informed Critical Controls List (TICCL), provide written input on review of required security controls, potential vulnerability exploitation, and how MITRE ATT&CK© techniques are plausibly successful based on organizational weaknesses. Ensure inputs link back to security controls

• Participating in the planning, execution, and reporting of security audits and network vulnerability assessments with minimal supervision

• Assisting in preparation of assessment deliverables -Security Risk Assessments input, compliance data, STIG data, etc.

• Communicating on impact of vulnerabilities verbally, through presentations and written deliverables

• Plan, execute, and report on information technology, privacy, and operational reviews to identify mission, privacy, security, compliance, information technology, and regulatory risks

• Familiar with a variety of cybersecurity concepts, practices, and procedures. Relies on extensive experience and judgment to plan and accomplish goals

  The Windows reviewer must be well versed in all sub-components for Windows systems which include Windows Operating Systems (OS), Windows Database Server, Windows Web, Windows Domain Controllers, Windows Exchange, and Windows Workstations. The windows reviewer must have knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language (PL/SQL) and injections, race conditions, cov

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.

Required:

• Bachelor's degree required, preferably in Computer Science, Information Technology, Computer Engineering, or related discipline

• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future

• Must be able to maintain the required security clearance for this role -active TS/SCI with Polygraph

• Must possess IAT III Certification or equivalent certification

• Minimum of 12 years of experience required

  Preferred:

• Assist in identifying, prioritizing, and coordinating the development of critical cybersecurity

• Prior professional services or federal consulting experience

  #LI-MC4

  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.