Director - Enterprise Incident Response
Sydney, NSW, AU
Applications have closed
Deloitte
Insights zu unseren Diensleistungen im Bereich Audit, Consulting, Financial Advisory, Risk Adivisory und Tax sowie unseren zahlreichen Industrien.Job Requisition ID: 35921
Deloitte is currently seeking a Director – Incident Response to join our Australian Cyber business in Technology and Transformation.
What will your typical day look like?
As a Director in the Incident Response Team, you will work alongside your colleagues to manage complex investigations and cyber security incident response engagements from triage through to resolution in a professional and empathetic manner.
In between active engagements, you will spend your time on a variety of activities to improve your own skills and the capabilities of the business. This will include research and development, training, proactive services and other team initiatives.
Key responsibilities breakdown:
-
60% Technical Delivery on Incident Investigation, Threat Hunting and Related Professional Services
-
20% Capability Development across Proactive and Reactive Service Lines
-
10% Business Development
-
10% Mentorship of Junior Staff
About the team
This position is accountable for the management and leadership of high impact cyber security incidents for our customers. These incidents may range from small investigations across several endpoints, to enterprise-wide incident response and recovery efforts up to 6 months in duration. Team members are required to do limited international travel and maintain Australian Government Clearances.
Enough about us, let's talk about you.
Your innate curiosity, attention to detail, knowledge of threat actor techniques, incident response methodologies IR tools and concepts will allow you to conduct high calibre investigations of security incidents that vary in scale, impact, and complexity. You will effectively communicate actionable information in both verbal and written form to clients during and after the incident to help contain, eradicate, and protect their organisation from cyber threats.
Key position Tasks (not limited to):
-
Lead investigations and incident response engagements by prioritising and allocating tasks and resources logically and efficiently.
-
Acquire (or guide others to acquire) data necessary to undertake an investigation from a variety of sources using appropriate tools and techniques.
-
Assist with the provision of strategic recommendations to customers regarding incident response and remediation
-
Design, build, and train Cyber Incident Response capabilities for clients;
-
Conduct Compromise Assessments and Threat Hunting assignments;
-
Undertake forensic analysis tasks independently with a high level of accuracy to inform enterprise incident response and intelligence gathering efforts, using both commercial and opensource tools:
-
You are not required to undertake digital forensic investigations and must be able to demonstrate an ability to determine when and where you hand an investigation over to digital forensic experts for further investigation.
-
Use endpoint detection and response tools already present in the client environment or assist with the selection and deployment of EDR and artefact collection tools as required.
-
Produce high quality technical and executive level reports, requiring minimal revision.
-
Mentor other team members in their professional development by providing guidance on the use software and accurate interpretation of artefacts.
-
Undertake peer review of analyses and reports of other team members
-
Strengthen internal and external awareness of cyber threats, investigative techniques, and other relevant topics in a format of your choice. This may include writing blog posts, presenting at conferences, or developing tools.
-
Assist with the delivery of proactive services as required.
-
Contribute to the development and improvement of IR services at Deloitte.
Why Deloitte
At Deloitte, we focus our energy on interesting and impactful work. We’re always learning, innovating and setting the standard; making a positive difference to our clients and our society. We put coaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.
We embrace diversity, equity and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone’s perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong.
We prioritise flexibility and choice. At Deloitte, you get trust on Day 1. We know our people get their best work done when they’re in control of where and how they work, designing their work week around their client, team, and personal commitments.
We help you live and work well. To support your personal and professional life, we offer a range of perks and benefits, including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package.
Next Steps
Sound like the sort of role for you? Apply now, we’d love to hear from you!
By applying for this job, you’ll be assessed against the Deloitte Talent Standards. We’ve designed these standards so that you can grow in your career, and we can provide our clients with a consistent and exceptional Deloitte employee experience globally. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: EDR Incident response
Perks/benefits: Career development Conferences Equity / stock options Flex hours Parental leave
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.