Cyber Operate - Defense & Resilience - Manager

Cyber Operate - Defense & Resilience - Manager

Risk Management and Governance | Cyber Risk

Chicago, Illinois, United States

Position Summary

Job title: SOC Manager

About

At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security.

By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas.

Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients‘ most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions.

The Team

Cyber & Strategic Risk

We help organizations create a cyber- minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. As organizations are called upon to align their priorities and to drive core business objectives and reduce risk, our cyber and strategic risk management team helps clients focus on enterprise- level risks through a wider lens.

Deloitte’s Detect & Respond (D&R) aims to combine sophisticated technologies and human intelligence to help the clients monitor, detect, investigate, and respond to known and unknown attacks. We help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Detect and Respond team delivers service to clients through following key areas:

• Threat detection and response
• Attack surface management
• Threat Intelligence
• Threat Hunting
• Data Protection

Work you’ll do

As an SOC Manager you will supervise day-to-day operations of the SOC delivery team, maturing processes and driving new innovations.

• Responsible for managing a 24x7 team of Security Analysts serving multiple clients
• Responsible for service management of the team to include overall use of resources and initiation of corrective action where required for the SOC team, by taking inputs from SOC Leadership(s)
• Responsible for the SOC team’s success in security incident monitoring, identification, assessment, quantification, reporting, communication, and mitigation efforts as contracted by clients
• Responsible for ensuring quality of service metrics are maintained and adhered to by the team, by working with Shift Leads
• Review periodic auditing of security incidents provided by L2 & L3 analysts/ Shift Leads
• Ensure compliance to Service Level Agreements (SLAs), process adherence and process improvement to achieve operational objectives
• Coordination and collaboration with SOC Leaders(s) and other teams to support service delivery
• Provide tactical support as needed for major incidents impacting clients and/or FMS service incidents and issues
• Interview, train, and assess skills of analyst workforce
• Demonstrate leadership and communication skills
• Maintain individual certifications and learning requirements in FMS and Deloitte
• Actively seek self-improvement through continuous learning and pursuing career advancement
• Adhere to internal operational security and other Deloitte policies
• Coordinate with stakeholders, and build and maintain positive working relationships throughout the organization
• Provide counseling/coaching, oversight, and support for delivery teams and staff

Required skills

• Bachelor of Science/ Bachelor of Technology/ Bachelor of Engineering, with a concentration in computer science, information systems, information security, math, decision sciences, risk management, engineering (mechanical, electrical, industrial) or other business/technology disciplines or equivalent work experience
• Minimum 6 years of experience working in information security and/or technology engineering support experience
• Working experience in security technologies such as: Security information and event management (SIEM), IDS/IPS, Data Loss Prevention (DLP), Proxy, Web Application Firewall (WAF), Endpoint detection and response (EDR), Anti-Virus, Sandboxing, network- and host- based firewalls, Threat Intelligence, Penetration Testing, etc.
• Extensive knowledge of Advanced Persistent Threats (APT) tactics, techniques, and procedures
• Understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity, etc.
• Understanding of common network infrastructure devices such as routers and switches
• Understanding of basic networking protocols such as TCP/IP, DNS, HTTP
• Basic knowledge in system security architecture and security solutions
• Hands-on experience on QRadar (or QRoC), Proofpoint & Crowdstrike
• Expectation to be on-call during off-business hours
• Limited visa sponsorship maybe available
• Ability to travel 50%, on average, based on the work you do and the clients and industries/sectors you serve

Preferred skills

• Proven ability to translate complex information sets into specific recommendations that can be actioned by customers to enhance their security posture
• Strong understanding of threat analysis and enterprise level mitigation strategies
• Working knowledge of how malicious code operates and how technical vulnerabilities are exploited
• Strong knowledge of operating systems and networking technologies in general
• Strong knowledge of cyber threats, defenses, motivations, and techniques
• Excellent interpersonal and organizational skills

• Excellent oral and written communication skills
• Certified Information Systems Security Professional (CISSP), Certification in Certified Intrusion Analyst (GIAC), Continuous Monitoring (GMON), Certified Ethical Hacker (CEH) or equivalent
• Hands-on experience on XSIAM, Cortex XSOAR
• Hands-on experience on Netskope

Qualification

• Bachelor of Science/ Bachelor of Technology/ Bachelor of Engineering, with a concentration in computer science, information systems, information security, math, decision sciences, risk management, engineering (mechanical, electrical, industrial) or other business/technology disciplines or equivalent work experience
• 6+ years working in information security and/or technology engineering support experience

Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html

Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture

Our diverse, equitable, and inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Deloitte one of the most rewarding places to work. Learn more about our inclusive culture. Our purpose
Deloitte’s purpose is to make an impact that matters for our clients, our people, and in our communities. We are creating trust and confidence in a more equitable society. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. We are focusing our collective efforts to advance sustainability, equity, and trust that come to life through our core commitments. Learn more about Deloitte's purpose, commitments, and impact. Professional development

From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.

As used in this posting, "Deloitte Advisory" means Deloitte & Touche LLP, which provides audit and enterprise risk services; Deloitte Financial Advisory Services LLP, which provides forensic, dispute, and other consulting services; and its affiliate, Deloitte Transactions and Business Analytics LLP, which provides a wide range of advisory and analytics services. Deloitte Transactions and Business Analytics LLP is not a certified public accounting firm. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. These entities are separate subsidiaries of Deloitte LLP.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Requisition code: 204772