Africa Talent by Deloitte – Cyber Incident Response Specialist - Senior Consultant at Deloitte

Job Description

• Assisting clients with response to Cyber Incidents & getting back to business, this includes data leaks, ransomware, unusual network traffic. Cyber criminals, from insider threat to nation-state sponsored hackers.
• Technical investigations of cyber incidents: analysis of log files, Windows event logs, Linux artifacts to correlations in EDR tooling, network monitoring tools and SIEM
• In-depth analysis of malware, threat intelligence and other relevant sources (incl reverse engineering
• Tactical support such as advice on triage, containment, eradication and broader coordination in cyber incidents
• Forensic analysis of systems and networks
• Memory forensics
• Performing Compromise Assessments and Threat Hunting projects in SIEM and EDR tooling
• Creation of custom scripts for parsing special log files, data sets and images, etc.
• Creation of complex timelines based on findings and observations
• Member of the broader Deloitte Response Team, adding CIR skills to the overall team that includes privacy, crisis management, crisis communication, forensic investigations and ICS/OT
• Part of the EMEA and Global technical incident responder community to build a strong network and share knowledge base
• Flexible working hours to support the customer during high-impact incidents.

Qualifications

• You have a strong passion for ransomware intelligence and work well in challenging situations. You can see both the bigger picture, as well as the smallest traces. You have no problem prioritizing and taking ownership, even when in unchartered territory. In the role of Senior Cyber Incident Response Specialist, you also have:

Minimum Qualifications

• Master’s or bachelor’s degree in computer science (or related field)
• Certifications: GCIH, GCFE, GCFA, GNFA, GREM

Experience & Skills:

• At least 2 years of experience in Cyber Incident Response and digital forensics
• Hands-on skills to perform sharp and in-depth analyzes, both using tooling such as EDR and network sensors, but also manual analysis, if the tools are not available
• Affinity with offensive security work (pentesting etc.) beneficial
• Experience in systems and/or network administration is a highly advantageous
• Ability to work under pressure and keep track of the big picture while performing in-depth analysis
• Excellent communication skills (both verbally and written)
• Trust and Confidentiality in handling client sensitive information