Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax and related services. Our global network of member firms and related entities in more than 150 countries and territories (collectively, the “Deloitte organisation”) serves four out of five Fortune Global 500® companies. Learn how Deloitte’s approximately 312 000 people make an impact that matters at www.deloitte.com.

About the Division

In a world that is constantly changing, organisations need to adapt quickly to respond to new risks and take advantage of new opportunities. Deloitte's Risk Advisory practice advises organisations on how to effectively mitigate risk and make informed and intelligent risk decisions around business processes, technology and operations.

Click here to read more about our Risk Advisory practice.

Our Purpose

Deloitte is led by a purpose: To make an impact that matters. Every day, Deloitte people are making a real impact in the places they live and work. We pride ourselves in doing not only what is good for clients, but also what is good for our people and the communities in which we live and work—always striving to be an organization that is held up as a role model of quality, integrity, and positive change. Learn more about Deloitte’s impact.  https://www2.deloitte.com/global/en/pages/about-deloitte/articles/impact-that-matters.html

What impact will you make?

As a Cyber Incident Response Manager, you are part of Deloitte’s Cyber Risk organization. You will be an instrumental contributor to our team to help our clients protect their business.

Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration, and high performance. As the undisputed leader in professional services, Deloitte is where you will find unrivalled opportunities to succeed and realize your full potential.

As the Cyber Incident Response Manager you will be responsible for:

• Technical investigations of cyber incidents: analysis of log files, Windows event logs, Linux artifacts to correlations in EDR tooling, network monitoring tools and SIEM;
• In-depth analysis of malware, threat intelligence and other relevant sources (incl reverse engineering);
• Tactical support such as advice on triage, containment, eradication and broader coordination in cyber incidents;
• Forensic analysis of systems and networks
• Memory forensics
• Performing Compromise Assessments and Threat Hunting projects in SIEM and EDR tooling;
• Creation of custom scripts for parsing special log files, data sets and images, etc.
• Creation of complex timelines based on findings and observations
• Member of the broader Deloitte Response Team, adding CIR skills to the overall team that includes privacy, crisis management, crisis communication, forensic investigations and ICS/OT;
• Part of the EMEA and Global technical incident responder community to build a strong network and share knowledge base;
• Flexible working hours to support the customer during high-impact incidents.

Minimum Qualification:

• Master’s or bachelor’s degree in computer science (or related field)

Experience & Skills:

• Minimum 2 years of experience in Cyber Incident Response and digital forensics
• Hands-on skills to perform sharp and in-depth analyzes, both using tooling such as EDR and network sensors, but also manual analysis, if the tools are not available
• Certifications like GCIH, GCFE, GCFA, GNFA, GREM
• Affinity with offensive security work (pentesting etc.) is advantageous
• Experience in systems and/or network administration is highly advantageous
• Ability to work under pressure and keep track of the big picture while performing in-depth analysis
• Excellent communication skills (both verbally and written)
• Exceptional social skills, willingness and experience in being a team player and dealing with people from a various backgrounds and areas across the company, but also possess the ability to work independently
• Confidentiality in handling client sensitive information

How You Will Grow

At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there is always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University Leadership Centre. https://deloitte.zoomforth.com/du

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.

* Please note that this job advertisement provides a summary of the capabilities required and all candidates shortlisted will receive a full list of capabilities.

Hybrid & Vaccination policy

“Deloitte Africa has successfully launched the Hybrid Working model. Aligned with this model is our commitment to maintain an environment for personnel, clients and visitors that is safe and, as far as reasonably practicable, free from health risks.

Medical evidence provides overwhelming and empirical evidence that vaccination is currently the most effective means of preventing the spread of COVID-19 and reducing the likelihood of serious illness, death, transmissions and infections. More information about our mandatory vaccination policy will be discussed during the recruitment process for this position.“

Hybrid & Vaccination policy

Deloitte Africa has successfully launched the Hybrid Working model. Aligned with this model is our commitment to maintain an environment for personnel, clients and visitors that is safe and, as far as reasonably practicable, free from health risks.

Medical evidence provides overwhelming and empirical evidence that vaccination is currently the most effective means of preventing the spread of COVID-19 and reducing the likelihood of serious illness, death, transmissions and infections. More information about our mandatory vaccination policy will be discussed during the recruitment process for this position.