Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.

Seeking a Cyber Incident Responder to support the Security Operations Monitoring and Incident Response team to proactively monitor network/bandwidth traffic and/or performance and audit logs which prevents network attacks and/or reactively identify network intrusions and/or anomalous security incidents across the enterprise.

Work you'll do

• Enhance cyber awareness with clients and project teams.

• Work alongside federal clients to help them mitigate risk with the use of continuous monitoring and incident response.

• Establish security controls to ensure protection of client systems.

• Implement cutting edge security tools for our federal clients.

  The TeamDeloitte's Government and Public Services (GPS) practice - our people, ideas, technology and outcomes-is designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of more than 15,000 professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise.

At Deloitte, we believe cyber is about starting things-not stopping them-and enabling the freedom to create a more secure future. Cyber Strategy, Defense and Response (SDR) focuses on helping federal clients design and implement transformational enterprise security programs with an emphasis on defending against, recovering from, and mitigating major cyberattacks. If you're seeking a career that increases cyber awareness, utilizes risk management programs, and develops strategies for cyber defense and response, then the Cyber SDR offering at Deloitte is for you.

QualificationsRequired

• Bachelor's degree, preferably in Computer Sciences, Information Technology, Computer Engineering, or related IT discipline; or equivalent experience

• Must live in a commutable distance (approximately 100-mile radius) to one of the following Delivery locations: Atlanta, GA; Charlotte, NC; Dallas, TX; Gilbert, AZ; Houston, TX; Lake Mary, FL; Mechanicsburg, PA; Philadelphia, PA with the ability to commute to assigned location for the day, without the need for overnight accommodations

• Expectation to co-locate in your designated Delivery location up to 30% of the time based on business needs. This may include a maximum of 10% overnight client/project travel.

• Ability to travel 10%, on average, based on the work you do and the clients and industries/sectors you serve. This may include overnight travel.

• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future

• Ability to obtain and maintain the required clearance for this role

• 3+ years' experience in cyber incident response/handling procedures.

• Working Knowledge of Common adversary tactics, techniques, and procedures (TTPs).

• Working knowledge of network infrastructure and communication protocols

• 3+ year' experience with basic scripting languages including python, PowerShell, bash, etc.

• 3+ year's experience conducting Host and network log analysis

• 3+ years' experience with SIEM log analysis and obtaining logs through applicable query languages (Splunk, McAfee, Q-Radar, Sentinel, Etc.)

• 3+ years' experience performing process and binary analysis through a Commercial EDR solution ( Crowdstrike, Carbon Black, Tanium, etc).

• 3+ years working knowledge of enterprise detection technologies( AV, EDR, IDS/IPS, Firewall, Etc), and familiarity with their associated logging mechanisms.

  Preferred

• 1+ years of technical Cybersecurity Experience

• In possession of (1) entry level cyber security focused certification from industry recognized Certification Provider (GSEC, Sec+, CND,CCNA-Sec, Etc.)

  Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html

  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.