Senior Assistant, Security Policy Management Analyst

• Develop and manage security policies and exceptions for a range of Endpoint Security Technologies, including Advanced Threat Protection, Admin Rights Management, Web Protection, Removable Media Protection, Firewall, Intrusion Detection and Prevention, and Digital Collaboration.
• Support the team in responding to security incidents and requests from Security teams, and Deloitte Firms related to Endpoint Security Services.
• Collaborate with internal cybersecurity teams to assist in the implementation of new security policies and follow best practices.
• Work with various teams to implement controls on cloud collaboration tools, mitigating data insider risk.
• Enhance service delivery efficiency through the automation of repetitive tasks.
• Monitor service queues for change requests, assisting with timely implementation within agreed SLAs and adherence to internal change control processes.
• Review security alerts, perform initial triage, and escalate to relevant teams, including the Global Incident Response Team, as per established procedures.
• Contribute to the creation and maintenance of knowledge documents and playbooks outlining support procedures and workflows.
• Assist in resolving operational issues, collaborating with other internal Deloitte technology teams and vendors.
• Work alongside other Cybersecurity teams and subject matter experts on technical issues, testing and product deployments.
• Directly engage with Deloitte Firms and end-users for operational problem resolution, as well as event, policy, and incident resolution.
• Continuously improve process workflows in collaboration with the ServiceNow team.
• Perform other assigned job-related duties, including support ticket resolution and tracking.

• A Bachelor's degree in a related field or equivalent.
• Relevant security experience in support and/or operations, including system management and administration for mid to large-sized organisations.
• Basic understanding of common malware types, attack vectors, and security vulnerabilities.
• Working knowledge of Cloud Access Security Broker (CASB) and Data Loss Prevention (DLP) controls.
• A proactive and motivated learner with the ability to work effectively under guidance.
• Ability to follow established procedures for managing and maintaining endpoint protection security policies.
• Strong analytical and problem-solving abilities.
• Very strong written and verbal communication skills.
• Ability to collaborate effectively within a team and with stakeholders.

Desired Skills & Certifications:

• Exposure to Endpoint Security technologies such as CrowdStrike, Avecto/Beyond Trust, Symantec DLP, or Netskope.
• Industry certifications such as Security+, CC or Microsoft SC suite or equivalent.
• Understanding of Active Directory, Role-Based Access Control (RBAC), least privilege principles, incident response, and security operations.
• Familiarity with scripting concepts (e.g., PowerShell or Python) is a plus

Deloitte drives progress. Our firms around the world help our clients become market leaders wherever they compete. Deloitte invests in outstanding people with diverse talents and backgrounds, empowering them to achieve more than they can elsewhere. Our work combines consulting with action and integrity. We believe that when our clients and society are stronger, so are we.