Cyber Threat Management Analyst

Company Description

About Deloitte

Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte has approximately 457,000 professionals all committed to becoming the standard of excellence of professional services firms.

Deloitte’s professionals are dedicated to strengthening corporate responsibility, building public trust, and making a positive impact in their communities, and enjoy an environment of continuous learning, challenging experiences, and enriching career opportunities. All our professionals are united by our shared values, a set of core principles that guide our collective behavior. They set the expectations we have for one another and define how we, as stewards of Deloitte, should behave. They provide common ground to unite us across cultures and geographies. And, importantly, they help us to earn the trust and respect of our key stakeholders. Our shared values are lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact.

Deloitte East Africa provides seamless cross-border services to multinationals, large national enterprises, small and medium sized enterprises, and the public sector; with offices in Kenya, Tanzania, Uganda, Zambia, Malawi, and in the process of expanding our operations by re-opening an office in Ethiopia. 

A career with Deloitte offers you the opportunity to engage with and work alongside leading corporations within the East African region, and an opportunity to start and grow your career within a dynamic and rewarding environment. You will get the support, coaching and training needed to advance your career in Kenya and within the East Africa market.

What impact will you make?

At Deloitte we have a clear purpose, to make an impact that matters to our clients, our colleagues, and our communities. From professional development to leadership opportunities and career advancement, we empower our people to be their very best - because that’s how you make an impact.

About the Department

The Risk Advisory Function integrates powerful and practical solutions in cyber security, strategy, regulation and controls, backed by deep business knowledge across multi-disciplinary teams, to help our clients take the opportunity to connect trust, resilience and security for a more positive outcome.

We currently have an exciting opportunity for a dynamic person to join our Risk Advisory Team as a Cyber Threat Management Analyst in the Cyber Security service line. This position will be based in our Nairobi office in Kenya.

Job Description

Main purpose of the job

Cyber Threat Management analyst role is to defend client’s network & data by investigating security incidents that have been triaged and escalated by the first level of Analyst in Security Operations Center. This includes performing analysis of indicators of compromise, investigating security incidents by reviewing relevant security data, coordinating with impacted application owners and users and implementing or arranging remediation actions.

What you will do

Delivery

• Detect, analyze, Investigate, and report qualified security incidents to the Client as per the defined Service Level Agreement (SLA).
• Provide recommendations to the security incidents reported as per SLA.
• Investigates incidents using various security event sources (FW, IDS, PROXY, AD, EDR, DLP etc.).
• Investigations into non-standard incidents and execution of standard scenarios.
• Provide dashboard and data related to Incidents/Offenses for governance reports.
• Escalates to L2 if investigations uncover unusual or atypical situations.
• Perform system health check of security monitoring devices & report anomalies to admin/eng team.
• Escalation to client Management if the incidents are not closed by client as per the escalation metrics.
• Closure of incidents on ITSM tool with accurate resolution comments to determine true positive and false positive classification.
• Monitoring unhealthy log source/data source and escalate to engineering team to fix them.

Qualifications

• A Bachelor’s Degree in Engineering or equivalent.
• Overall experience of at least 2+ years in SIEM monitoring and Cyber security Incident response and Management.
• Hands-on experience with security tools and devices, operating systems, and/or networking devices desired.
• Proven skills and experience in log analysis, incident investigations.
• Experience working across diverse teams to facilitate solutions.
• Experience working with Security practitioners.
• Willingness to working 24/7 environment in rotating shifts.

Preferred Knowledge

Demonstrates proven expertise and success in incident handling, triage of events, network analysis and threat detection, trend analysis. Should have the following skills:

• Deep understanding of computer intrusion activities, incident response techniques, tools, and procedures.
• Knowledge of Windows, Active Directory, DNS & Linux operating systems.
• Good Experience in SIEM monitoring (LogRhythm, Splunk, Azure Sentinel).
• Knowledge of SOAR technologies, working with playbooks (LogRhythm, Cortex, Phantom, Demisto).
• Working experience and knowledge of ITSM tools for incident management.
• Must be action oriented and have a proactive approach to solving issues.
• Knowledge of security logs, log quality review.
• Knowledge on IT (Operating systems, networking, databases) and IT security knowledge (system and network security) including IT security tools.
• Good knowledge of office collaboration tools

Additional Information

Your role as a leader

At Deloitte we believe in the importance of leadership at all levels. We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society and make an impact that matters.

Leadership Capabilities

Living our Purpose - Builds own understanding of our purpose and values; explores opportunities for impact.

Influence - Actively focuses on developing effective communication and relationship-building skills.

Performance drive - Understands expectations and demonstrates personal accountability for keeping performance on track.

Strategic direction - Understands how their daily work contributes to the priorities of the team and the business.

Talent development - Demonstrates strong commitment to personal learning and development; acts as a brand ambassador to help attract top talent.

Why Deloitte?

At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there is always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world.

Deloitte opens the door to a career that can cross borders virtually and physically across the African continent and globally to gain experience and access projects beyond our borders. We value differences, and embrace people with diverse backgrounds, experiences, abilities and thinking styles.

Our purpose

Deloitte is led by a purpose: to make an impact that matters. Every day, Deloitte people are making a real impact in the places they live and work. We pride ourselves on doing not only what is good for clients, but also what is good for our people and the communities in which we live and work—always striving to be an organization that is held up as a role model of quality, integrity, and positive change. Learn more about Deloitte’s impact on the world. #Makinganimpactthatmatters

Recruiter Tips

We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do research to know some background about our firm and the business area you are applying to.

If you meet the above requirements, please visit our website and apply online: Deloitte East Africa Careers portal.

Your details will be treated with confidentiality and will not be shared with any third party.

Closing date: Friday, 31 January 2025

We are an equal opportunity employer and do not ask individuals to pay any fees or money as part of the recruitment process. Women and Persons with Disabilities are encouraged to apply.

At Deloitte, we want everyone to feel they can be themselves and to thrive at work—in every country, in everything we do, every day. We aim to create a workplace where everyone is treated fairly and with respect, including reasonable accommodation for persons with disabilities. We seek to create and leverage our diverse workforce to build an inclusive environment across the African continent.

Note: The list of tasks / duties and responsibilities contained in this document is not necessarily exhaustive.  Deloitte may ask the employee to carry out additional duties or responsibilities, which may fall reasonably within the ambit of the role profile, depending on operational requirements.

Be careful

Don’t provide your bank or credit card details when applying for jobs.

It is strictly against Deloitte policy for candidates to pay any fee in relation to our recruitment process. No recruitment agency working with Deloitte will ask candidates to pay a fee at any time.