Deloitte Cyber Fusion – Threat Intelligence Senior Analyst in Philadelphia, Pennsylvania
Cyber Risk Fusion Threat Intelligence Senior Analyst
Areyou interested in improving the cyber and organizational risk profiles ofleading companies? Do you want to be involved in delivering Fusion Managed /Security Operations Center (SOC) Services including identifying unauthorizedactivities and intrusions in their networks in real time? Are you excited aboutrapidly changing operational environments, learning what you need to get thejob done, and producing accurate and timely results?
Ifyes, then Deloitte s Fusion Managed Services (FMS) team could be the place foryou! Transparency, innovation, collaboration, sustainability: these are thehallmark issues shaping cyber initiatives today. Deloitte s FMS business ispassionate about making an impact with lasting change. Delivering our industry leading servicesrequires fresh thinking and a creative approach. We collaborate with teams fromacross our organization in order to bring the full breadth of Deloitte, itscommercial and public sector expertise, to best support our clients. Our aspiration is to be the premierintegrated services provider in helping to transform the cyber securityservices marketplace.
Ourteam is client focused and mission driven. As a Cyber Risk Fusion Threat Intelligence Analyst in Deloitte's FusionManaged Services, you ll work with our diverse teams of passionateprofessionals to help solve for some of today s toughest cybersecuritychallenges to enable or clients to achieve business growth and manage risk.
Work you ll do
The key job responsibilities will be to:
Perform threatresearch and analysis to collect intelligence on the threat landscape for clients,using sources that include but are not limited to Open-source securityintelligence, Threat information shared through client s network, lawenforcement, and industry sources, client specific learning based onsecurity/contextual data about the current state of client s enterprise network
Utilize thethreat intelligence platform to understand adversary tools, techniques,procedures, threat actors and campaigns, and malicious domains, URLs, IPs, andsites
Providenotifications to vulnerability management and L3 team on new indicators ofcompromise when available and recommended courses of action to support responseactivities
Provide a feed ofthreat observables from threat intelligence platform for ingestion into theSIEM tool
Perform weeklyand monthly threat summary calls with broader operations team and client teamsto review trends and outstanding issues
Document reporton the threat landscape including major threats, vulnerabilities, trends,attack vectors, and other indicators to support threat monitoring andvulnerability management
As needed,coordinate with the CSIRT team to contain the incident and to mitigate thethreat upon notification of incident
Assist with thereview and maintenance of Cyber Incident Response Plan and response playbooksas needed
Participate intabletop exercises and red teaming exercises and assist with preparation forthe exercises as needed
Perform periodichealth monitoring and maintenance of the Threat Intelligence Tool
Monitor andassist in certificate renewal of threat intelligence tools
Coordinate withsolution vendor for product upgrades/security patches, and troubleshootingproduct-related defects and issues
Perform upgradesand deploy patches post impact analysis in non-production and productionenvironment in accordance with change management protocol
Work with/support infrastructureteam for any hardware/operating system (OS) related upgrades and issuesimpacting the solution
Interact withclients, including working with client teams in an onsite and offshore deliverymodel
Lead and workclosely with vendor alliances
Manage projectdeliverables and team
Manage andmitigate project risks
Enabling businessdevelopment by assisting in request for proposal and sales processes
Lead process complianceactivities by identifying and driving initiatives that are relevant for theproject delivery and help factor reusability and related benefits
Contribute toeminence activities, such as whitepapers pertaining to Threat Intelligence
Category: Cyber Risk
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
- Deloitte Jobs