Incident Responder/SOC Analyst (Delivery Center-Remote)

at Deloitte in Springfield, Illinois, United States

Job Description

Are you an experienced, passionate pioneer in technology – a solutions builder, a roll-up-your-sleeves technologist who wants a daily collaborative environment, think-tank feel and share new ideas with your colleagues – without the extensive demands of travel? If so, consider an opportunity with our Government & Public Services – US Delivery Center – we are breaking the mold of a typical Delivery Center.

• Enhance cyber awareness with clients and project teams.

• Work alongside federal clients to help them mitigate risk with the use of continuous monitoring and incident response.

• Establish security controls to ensure protection of client systems.

• Implement cutting edge security tools for our federal clients.

Transparency, innovation, collaboration, sustainability: these are the hallmark issues shaping Federal government initiatives today. Deloitte’s Federal practice is passionate about making an impact with lasting change. Carrying out missions in the Federal practice requires fresh thinking and a creative approach. We collaborate with teams from across our organization in order to bring the full breadth of Deloitte, its commercial and public sector expertise, to best support our clients. Our aspiration is to be the premier integrated solutions provider in helping to transform the Federal marketplace.

Our GPS – USDC Cyber Risk team is client focused and mission driven. Our team works across industries and sectors to respond more rapidly and effectively, providing recommendations to improve cyber threat detection.

Qualifications

Required:

+ Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.

+ Must be able to obtain and maintain the required clearance for this role.

+ Travel up to 15%.

+ Must have bachelor’s degree.

+ Must have a minimum of five (4) years of experience administering Security Orchestration, Automation, and Response tools in a large enterprise setting.

+ Must have a minimum of five (4) years of hands-on experience in a System Administration discipline and must have extensive system administration experience administering Unix/Linux and Windows.

+ Must have experience configuring Security Orchestration, Automation, and Response tools, scripts, events, and playbooks.

+ Experience in SOAR, built playbook creation and SOAR tool administration.

+ Experience supporting security operation centers SOC.

+ Experienced supporting security tool automation task or security engineering automation task

+ Experience implementing system updates, creating and maintaining custom content and playbooks and troubleshooting client/server issues.

+ Shall possess expertise in shell scripting and other programming languages, such as Python.

+ Must possess strong shell scripting skills to automate system maintenance tasks.

+ Must possess in depth understanding of networking and routing protocols.

+ Must possess project management skills to monitor tasks and provide deliverables.

+ Must perform business process analysis and development.

+ Must possess communication skills to quickly understand program details, to work side-by-side with project managers, data experts, and analysts/programmers.

+ Must demonstrate strong oral and written communication skills, with the ability to communicate technical topics to management and non-technical audiences.

+ Must possess strong analytical, problem solving and documentation skills.

Preferred:

+ Prior professional services or federal consulting experience.

+ Previous Security Operations Center experience.

+ Experience in mobile and endpoint security.

+ Certifications in Splunk.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.