Incident & Response Specialist

¿Can you imagine participating in the transformation of leading national and international organizations?

At Deloitte, we are committed to making an impact on society, our clients, and you.

Let’s continue the journey together?

Deloitte's Global Cyber Incident Response Team operates from three cyber hubs, located in Spain, India, and the USA. The EMEA IR Specialist will work with the EMEA team, located in our Madrid offices, to serve as a cyber incident responder performing technical services for cyber security incident investigations and assessing the scope of incident damage. We aim for all team members to grow professionally and personally with us.

What will your day-to-day be like?

The core competencies span Cloud Security and/or Digital Forensics, including:

Cloud:

• Knowledge of Cloud infrastructure.
• Familiarity with Cloud Security Technologies such as CASB, CWPP, CSPM and Cloud Providers (GCP, AWS, Azure), containers, orchestrators like Kubernetes, Docker, etc.
• Existing knowledge of, and experience with, public Cloud platform (XaaS) features, capabilities, and best practices.
• Familiarity with analyzing packet capture files.
• Experience in cybersecurity and previous experience as part of a CIRT, CSIRT or similar response team.
• Knowledge of incident management and response processes and procedures aligned with best practices.
• Perform disk and/or memory forensic investigations in accordance with industry standards, including evidence preservation and generating an audit trail.
• Participate in the containment, eradication, and recovery of major incidents.

Requirements:

• Minimum of 3 years of experience in security operations and cyber incident response.
• High level of English as we are an international team working together from across the globe.
• Bachelor’s degree in a technology-related field, or equivalent education or experience.
• Proficiency in cyber incident response investigations including containment, eradication, and remediation activities.
• Experience in assessing the scope of incident damage, determining incident severity, and maintaining documentation throughout a cyber incident.
• Prior experience coordinating shift hand-offs between different team members and/or locations.

Other preferred skills:

• Understanding of open source penetration testing tools.
• Understanding of Windows internals.
• Understanding of cyber threats and how intelligence is used by security appliances and operators.
• Understanding of host and network forensic artifacts and indicators of compromise.
• Experience working with malware sandboxes.
• Understanding of intelligence sharing formats and working with IOC & IOA in their different exchange formats.
• Familiarity with command shell scripting languages.

How is it to work at Deloitte?

High-impact projects where you will have a long journey and learning experience.

️A hybrid-flexible daily routine: You will have flexible hours and a good balance between remote work and teamwork in our offices or our clients’ offices.

Good atmosphere inside and outside the office: You will enjoy team-building events, cultural and sports activities, and more!

️Comprehensive well-being: Take care of yourself with our physical, mental, and financial health programs, including access to medical teams at the offices.

Social impact: You can participate in numerous volunteer opportunities and pro bono projects, applying your skills to help those in need.

️Culture of feedback and continuous learning: Grow in an inclusive environment with equal opportunities and personalized training plans. Can you see yourself at Deloitte University in Paris?

Exclusive benefits: Enjoy a wide range of benefits and a flexible compensation plan.

If you like what you read, here are your next steps:

• Apply for the position by clicking on 'Submit application now' and completing your profile.
• If you are a good fit, our talent team will contact you to learn more about you.

Start the process! We will guide you through the stages until your onboarding.