As a Technical Incident Responder you will be focused on Cyber Incident Response within Technology and Transformation, you will typically have responsibility for:
- Your creative mindset will enable you to solve clients’ issues whilst thinking around corners;
- You will bring innate ability to lead teams, inspire colleagues and act as a trusted business adviser;
- You will deliver cyber-related engagements with our clients, working seamlessly and collaboratively with colleagues and clients;
- You will contribute to the development of our teams by training and coaching;
- You’ll be contributing to the creation of new Cyber related services and the development of existing services;
- You’ll be keen to increase the eminence of the Deloitte Cyber practice and engage with some high profile clients;
- You will have the willingness to learn and develop that Deloitte will encourage through training, mentoring and coaching options;
- You will work effectively in diverse teams with an inclusive team culture where people are recognised for their contribution.
Desirable skills, qualifications, and experience
- Proven experience in Incident Response supervising technical and non-technical team members and managing incidents, either in-house or as a consultant;
- Experience in network forensics with an emphasis on detecting malicious activity using network traffic;
- Experience working with security intelligence, data analytics, security incident response, and forensic investigation teams;
- Experience in forensic and memory analysis with an emphasis on detecting malicious activity using host-based artefacts on Windows and/or Unix/Linux operating systems;
- Investigative and incident response experience within cloud environments e.g., AWS, GCP and Azure;
- Tool agnostic ability to conduct preliminary malware analysis;
- Knowledge of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques;
- Excellent verbal and written communication skills and the ability to tailor communications to people from a wide range of backgrounds and seniorities;
- Excellent interpersonal skills and experience of developing strong relationships, either as a consultant or within an organisation;
- Experience in delivering proactive Incident Response Advisory work to help improve client response maturity (e.g., response process and procedure creation), including scenario design and delivery of cyber‑war‑gaming exercises;
- Experience leading technical teams during cyber incidents and prioritising analysis and remediation activity across a multi‑discipline response team;
- Willingness to operate as part of an ‘on‑call roster’, travelling to assist our UK and EMEA clients when required;
- Relevant industry qualifications to demonstrate understanding, for example CISSP, CISM, GCFE, GCFA, GREM, GCIH, CCIM, GCIA, CCNIA, CCHIA, CCMRE or similar;
- Holds Government Security clearance, or willingness to undergo the security vetting process
