Assistant Manager, NSE Cyber Security Incident Response Analyst

As a NSE Cyber Security Incident Response Analyst you will serve on a long term assignment within NSE. You will report to the NSE Head of Cyber Incident Response, the role provides support for a range of operational security activities including cyber incident analysis, remediation support and detailed investigation at Deloitte., * In charge of the NSE Cyber Security Operations Incident Ticket queue, handling and resolving Cyber Security Incident Tickets

• Supports the NSE Cyber Security Senior Analyst in day-to-day activities
• Provides technical services needed for cyber incident response investigations including, containment, eradication and remediation activities
• Assists with assessing scope of incident damage
• Assists in determination of incident severity
• Maintaining documentation throughout a cyber incident
• Assists in the drafting of post-incident reports to senior leadership to convey impact, origin, root cause, and remediation
• Provides direct guidance and oversight to Service Management during an Incident Response if required
• Participation in Threat Hunting and Threat Intelligence activities, Collaboration is central to everything we do at Deloitte. From IT to HR, marketing and more, our teams help to support the wider business in everything they do. Bringing your individual skills and specialist knowledge, you can make a far-reaching impact. Come join us.

Technology and digital services

From architecture and delivery of new IT systems to IT risk and security, we manage the relationships between the business and our Technology and Digital Services teams. We also help with the delivery of day-to-day operational technology and digital support to the rest of the business.

• Experience in Information Security / Cybersecurity
• Excellent written and verbal communication skills, sociable and collaborative skills, and the ability to communicate cyber security topics and concepts to technical and nontechnical audiences at various hierarchical levels
• Possess strong organizational skills to facilitate management and tracking of large numbers of incidents, events, and associated tasks
• Ability to adapt and operate in a high-tempo, dynamic and potentially high-pressure environment
• Demonstrated knowledge of the incident lifecycle and security operations, working knowledge of triage and analysis tools, and a strong understanding of cybersecurity threats
• Demonstrated knowledge of incident response casework, including maintaining case information, chain of custody reporting, and full documentation of issues from identification through remediation
• Proven track record and experience of the following in a highly complex and global organization
• Strong problem solving and troubleshooting skills with experience exercising mature judgement
• Excellent teamwork and sociable skills
• Strong willingness to learn and work outside of knowledge comfort zone
• Professional security management certification is desirable but not a requirement for the role
• Operational knowledge of a number of preventive and detective security controls (knowledge of ALL these areas is NOT required) e.g. firewalls, advanced endpoint solutions, Data Loss Prevention (DLP), web security solutions, email gateways, Security Information and Event Management (SIEM)
• Foundational knowledge of a number of general IT technologies and concepts (knowledge of ALL these areas is NOT required) e.g. routers, switches, messaging systems, server operating systems (Windows, Linux), desktop operating systems (Windows, macOS), cloud services and architecture, vulnerability management
• Experience recording and maintaining incident documentation within a ticketing system
• Ability to quickly analyse large amounts of information and formulate action plans based on that analysis

Deloitte drives progress. Our firms around the world help our clients become market leaders wherever they compete. Deloitte invests in outstanding people with diverse talents and backgrounds, empowering them to achieve more than they can elsewhere. Our work combines consulting with action and integrity. We believe that when our clients and society are stronger, so are we.