Be at the forefront of one of the most fast-paced and influential industries in the world. Deloitte’s cyber risk practice helps clients remain vigilant and defend against emerging threats and cyber-attacks with intelligent, secure and resilient solutions. As world leaders in security consulting, we are continuing to build powerful teams of multi-disciplinary professionals who want to work with the best in the business, whether it be in our advisory services or managed security operations. So join Deloitte and see what it means to love the company you keep. Click here to find out more about our Cyber Risk Services.

Position overview:

Our Cyber Intelligence Practice is currently seeking a Level 1 Analyst who is self-motivated, energetic, driven for success and results-oriented have. The analyst will also be a key player in building world-class security operations center that is aligned with our strategic direction and that helps the firm better deliver on new and existing engagements.

Responsibilities:

• Review security-related events, assessing risk and validity, and reporting of findings
• Ability to read and understand system data, including, but not limited to, security event logs, system logs, and firewall logs
• Investigates, researches and analyses security incidents
• Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
• Work closely with your team to exceed our client's expectations while identifying and mitigating business risks associated with projects.
• 10 hour shifts are on a rotating schedule to cover 24/7 operation

Incident Response and Investigation:

• Log collection, incident and threat detection
• Evidence collection, threat and risk management
• Review security-related events, assessing severity, criticality and priority 
• Monitor and report based on client SLAs with an emphasis on quality and accuracy. 

Your role as junior staff member at Deloitte:

• Understand our purpose and values; explore opportunities for impact
• Demonstrate a strong commitment to personal learning and development; act as a brand ambassador to help attract top-talent
• Understand expectations and demonstrate personal accountability for keeping performance on-track
• Actively focus on developing effective communication and relationship-building skills
• Understand how your daily work contributes to the priorities of the team, the business, and the firm
   

Required Qualifications:

• A Bachelor's Degree / Diploma in a relevant area of study with a preference for Computer Science, Information Security or Computer Engineering.
• Good working knowledge of:
• Experience with MITRE attack framework
• Server platforms (Linux, UNIX, Windows, etc.)
• Relevant networking experience (e.g. TCP/IP stack, DNS)
• Direct prior experience with core security technologies such as security information and event monitoring systems (SIEM), network and host intrusion prevention and detection systems, and anti-virus solutions
• Strong analytical and investigative skills
• Strong understanding of lateral movement
• Occasional travel to client sites across Canada 

Desirable Qualifications:

• Industry certifications (CompTIA Security+, GSEC, CEH,  vendors certifications such as Carbon Black, TrendMicro, Splunk, Qradar, LR) are a strong asset
• Prior experience with in a Security Operations Center
• Possesses knowledge on Orchestration and Automation tools
• Network architecture