Job Specifications
Job Type: PermanentWork Model: HybridReference code: 130778Primary Location: Toronto, ONAll Available Locations: Toronto, ON
Our Purpose
At Deloitte, our Purpose is to make an impact that matters. We exist to inspire and help our people, organizations, communities, and countries to thrive by building a better future. Our work underpins a prosperous society where people can find meaning and opportunity. It builds consumer and business confidence, empowers organizations to find imaginative ways of deploying capital, enables fair, trusted, and functioning social and economic institutions, and allows our friends, families, and communities to enjoy the quality of life that comes with a sustainable future. And as the largest 100% Canadian-owned and operated professional services firm in our country, we are proud to work alongside our clients to make a positive impact for all Canadians.
By living our Purpose, we will make an impact that matters.
Have many careers in one Firm.
Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
Learn from deep subject matter experts through mentoring and on the job coaching
What will your typical day look like?
Working on our Cyber Incident Response team, you will:
Work on unique and exciting engagements helping organizations prepare for, respond to, and recover from cyber incidents
Deliver engagements across a wide variety of clients, industries, technologies, and geographies
Be part of a national, diverse, collaborative, and performance-driven incident response team
Investigate large, complex, and high-profile cyber incidents and data breaches
Lead technical investigations and response activities, and liaise directly with clients
Lead and participate in technical workshops regarding incident response, network security, vulnerability management, access management, etc.
Acquire, preserve, and analyze data from a wide variety of devices, including workstations, servers, and cloud systems
Investigate network intrusions and other data breaches to determine root cause, scope, and impact of the incident
Assist clients with containment and recovery from cyber incidents
Deliver incident response engagements following industry standard methodologies like NIST and SANS
Conduct research to expand your knowledge on the latest security threats and risks, technologies, and standards
Use, build, and grow an emerging technology stack used to deliver incident response engagements
Contribute to ongoing practice improvement regarding technology, processes, and structures to deliver incident response engagements
Develop Incident Response plans, polices, and playbooks to prepare organizations to respond efficiently and effectively to cyber threats
Support the team in conducting tabletop simulation exercises for Technical and Executive teams
Assist clients with Post Incident Reviews to help identify opportunities to improve processes and capabilities
Cultivate relationships with clients and share your knowledge while leveraging prevalent methodologies
Develop high quality deliverables, such as Incident Investigation Reports and Post Incident Reviews
Continue your professional development to reinforce and expand your chosen career path
About The Team
Deloitte's globally recognized Cyber Security practice advises organizations across many industries on how to effectively manage threats, reduce vulnerability, mitigate cyber risks and make informed decisions as they elevate their security programs to address an evolving and increasingly complex threat environment.
Our diverse team of talented and collaborative professionals work closely with each other and clients across the complete range of cyber services including security and compliance assessments, technical assessments, governance, control testing, incident response, awareness training and threat and vulnerability management.
Enough about us, let’s talk about you
You are someone who:
Can write and speak on both technical and business subjects
Has the ability to effectively communicate with technical and non-technical stakeholders, including business leadership
Has the ability to remain calm under pressure, and help organizations in times of crises
Possesses strong time management skills
Is self-directed, with the ability to thrive in a fast-paces and dynamic environment
Is strong in analytical and problem-solving skills
Has at least 4 years of experience working in the digital forensics and incident response field, or a closely adjacent field
Has previous experience in the broader cyber security and technology fields (would be considered a strong asset)
Has previous consulting firm experience (would be considered a strong asset)
Technical Skills:
Incident response engagements including ransomware, data breaches, business email compromise, network intrusions, and cloud incidents
Industry standard digital forensic tools like Magnet Axiom, Encase, XWays, FTK, Velociraptor, Timesketch, V