Cyber Risk - Cyber Threat Senior Consultant

Deloitte is one of the leading professional services organizations in the United States, specializing in audit, tax, consulting and financial advisory services with clients in more than 20 industries. We provide powerful business solutions to some of the world s most well-known and respected companies, including more than 75 percent of the Fortune 100.At Deloitte, you can have a rewarding career on every level. In addition to challenging and meaningful work, you ll have the chance to give back to your community, make a positive impact on the environment, participate in a range of diversity and inclusion initiatives, and find the support, coaching, and training it takes to advance your career. Our commitment to individual choice lets you customize aspects of your career path, your educational opportunities and your benefits. And our culture of innovation means your ideas on how to improve our business and your clients will be heard.
Our Cyber professionals
+ Gain access and exposure to enterprise-level software implementations and unique information security challenges which you would otherwise not see at a smaller consultancy
+ Work at an operational tempo at an unparalleled pace expected of high-caliber Deloitte professionals who have industry experience, confidence, and technical expertise
+ Have a Variety of day-to-day routines, not the same old repeating tasks, travel to client locations
+ Strong potential for growth and acceptance of additional responsibilities
The Vigilant Practice
As it becomes increasingly difficult to prevent infiltrations and unauthorized activity, organizations need threat awareness and advanced detection and intelligence solutions. Our VIGILANT services leverage deep experience with analytic and correlation technologies to help clients develop monitoring capabilities focused on critical business processes. By integrating threat data, IT data, and business data, our teams are equipped with context-rich alerts to help prioritize incident handling and streamline incident investigation. Deloitte acquired Vigilant, Inc. in 2013 to strengthen our security monitoring and cyber threat intelligence services.
Work you ll do
The following job duties are necessary to be successful in your role and part of the Vigilant team.
+ Perform internal and external vulnerability assessments as well as penetration
+ Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases
+ Perform network reconnaissance
+ Perform security forensics on systems
+ Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
+ Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
+ Understand clients' business environment and basic risk management approaches
+ Demonstrate a general knowledge of market trends, competitor activities, Deloitte & Touche products and service lines
+ Generate innovative ideas and challenge the status quo
+ Build and nurture positive working relationships with clients with the intention to exceed client expectations
+ Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
+ Communicate to clients and partners aspects of both the product and the implementation at the technical and functional level appropriate for the situation.
The team
Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TMcyber risk programs. Join the team developing the future state of cyber risk solutions.Learn more about Deloitte Advisory s Cyber Risk Services practice.
+ 3-5 years plus experience in the following areas:
+ Preforming vulnerability assessments and penetration testing using manual testing techniques, scripts, commercial tools and open source tools.
+ Exploiting vulnerabilities
+ Ability to read, write and modify scripts.
+ Network reconnaissance and open source intelligence (OSINT) gathering
+ OWASP, wireless penetration testing, password cracking,
+ Knowledge of security best practices: NIST, CIS, Cisco, Juniper, Checkpoint, Microsoft, Unix/Linux, etc
+ Security forensic analysis, virus analysis, malware analysis and honeypots
+ BA/BS preferred in Computer Science, Computer Engineering, Finance, Information Security, Technology or equivalent work experience
+ Must be willing to travel up to 80% within North America
+ Previous Consulting or Big 4 experience preferred.
+ Certifications such as: CISSP, CISM, or CISA certification a plus
Preferred technology experience with the following:
+ Penetration Testing: Kali Linux, BackTrack 4/5, SET Toolkit, War Dialing, VOIP testing, SQL Injection, Web Application Testing, Onapsis, Metasploit, Wireless tools, etc
+ Vulnerability Assessment: Nessus, Qualys, Foundstone, Nexpose, Metasploit, Core Impact, OpenVAS, Kismet, etc
+ Web Application Testing: App Scan, Hailstorm, Nikto, Grendel, Burpsuite, Acunetix, Qualys, etc
+ Database Testing: Scuba, SQLninja, AppDetectivePro, Havij, Mysqloit, SQLmap, Onapsis X1 etc
+ Forensic Software: FTK, F-Response, Encase, TASK
+ Network Assessment: NMAP, Nipper, Wireshark, TCPdump
+ Password Cracking: John the Ripper, Medusa, Cain, rainbow tables
How you ll grow
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center.
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.Learn more about what working at Deloitte can mean for you.
Deloitte s culture
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Corporate citizenship
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte s impact on the world.
Recruiter tips
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you re applying to.Check out recruiting tips from Deloitte professionals.
About Deloitte
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Disclaimer: If you are not reviewing this job posting on our Careers site (careers.deloitte.com) or one of our approved job boards we cannot guarantee the validity of this posting. For a list of our current postings, please visit us at careers.deloitte.com.
Category: Information Technology

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.