Associate Director | Incident Response & Handling | Delhi | Cyber Defense & Resilience
Share
Job Location:
Monthly Salary:
Posted on:
3 days ago
Vacancies:
1 Vacancy
Job Summary
AssociateDirectorCyber Defence & ResilienceIncident Response & HandlingDelhi
- Location:Delhi
- Job requisitionID:98412
- Entity: Deloitte Touche Tohmatsu India LLP
The team
Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure vigilant and resilientnot only by looking at how to prevent and respond to attacks but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks
Your Work Profile:
Manageclientengagements with a focus onincident response and investigation. Provide both subject matterexpertiseand project management experience to serve as the point person forclientengagements
Assistwithclient incident scoping call andparticipatein the incident fromkick-off through fullcontainment and remediation.
Security Analytics - Efficientlydistillactionable information from large data sets for reporting hunting and anomaly detection.
Recommend and document specificcountermeasuresand mitigating controlswith post incident analysis findings
Develop comprehensive andaccuratereports and presentations for both technical and executive audiences
Conduct Digital Forensic and Incident Response (DFIR) analysis networklogand network PCAP analysis malwaretriageand other investigation related activities in support of Incident Response investigations
SuperviseDigital Forensics and Incident Response staff andassistingwith performance reviews and mentorship of cybersecurity professionals
Mature the Security Incident Response process to ensure it meets the needs of theClients
InteractwithClientsCSIRT teams tocatercontinuous and/or ad-hoc client requests forIncident Responseservices
Possess the experiencecredibilityand integrity to perform as an expert witness.
Involve in business development activities and supporting pre-sales teams in Identify market and develop new business opportunities
Assistwith research and distribute cyber threat intelligence developed from Incident Response activities
Research develop and recommend infrastructure (hardware & software) needs for DFIR and evolve existing methodologies to enhance and improve our DFIR practice.
10 years of overall experience with at least 7 years of relevant experience in maintaining tuning monitoring and managing all aspects of Security Analytics and SOC. Must have experience in managing at least 3 projects for large enterprise scale Clients.
Shall be responsible for deploying maintaining tuning monitoring and managing all aspects of SOC. Security products and technologies; Tools like Security Incident Event Management Perimeter Security Anti-APT Security Analytics Web gateway UEBA Endpoint Security IPS BIG Data OS/DBs etc. network protocols and data center security analysis and investigation. Incident management change management problem management and ability to work 24x7 during crisis.
Must have experience of managing TIP and Security Analytics platforms.
Knowledge of processes and methodologies involved with keeping information confidential available and assuring its integrity
Key Skills Required:
10-14years Information Security experiencewith at least 5yearof Incident Response experience.
- Education qualification : Should be an experienced IT Security practitioner with B.E. / B. Tech / B.S / MCA degree. Certified with: CISSP / OSCP / CISM certification and OEM Certification on tool & technology to be deployed in SMAC.
Solid understanding of MITRE ATT&CK NIST cyber incident response framework and Cyber kill chain.
Understanding of Threat Hunting and threat Intelligence concepts and technologies
Experience ofleveragingtechnical security solutionssuch asSIEM IDS/IPS EDR vulnerability management or assessment malwareanalysis or forensicstools for incident triage and analysis.
Deep experience with most common OS (Windows MacOS Linux Android iOS) and their file systems (ext3.4 NTFS HFS APFSexFATetc)
Proficiencywith industry-standard forensic toolsets ( Axiom/IEF Cellebrite/UFEDNuixand FTK)
Experienceofenterprise level cloud infrastructure such as AWS MS Azure G Suite O365etc..
Experienceofmalware analysis and understanding attack techniques.
CISSPECIHv2GCFAGCIHEnCEor equivalent DFIR certification.
Ability to workin time-sensitive and complexsituations with ease and professionalismpossessan efficient and versatile communication style
Good verbal and written communication skill excellent interpersonal skills
Required Experience:
Director
Key Skills
About Company
Deloitte Touche Tohmatsu Limited, commonly referred to as Deloitte, is a multinational professional services network. Deloitte is one of the "Big Four" accounting organizations and the largest professional services network in the world by revenue and number of professionals with headq ... View more
