אבטחת מידע וסייבר

Deloitte נחשבת כמובילה בתחומי ייעוץ אבטחת המידע וה-Cyber בעולם. כוחו של התחום מתבטא בחיבורו למניעים העסקיים של לקוחותינו וביכולת לספק קשת רחבה של ידע ופתרונות המתבססים על ניסיון שנצבר בפרויקטים ברחבי העולם. אנו מאמינים כי אבטחת מידע וסייבר מהווה חלק בלתי נפרד מההתנהלות הארגונית הכוללת ונעשית בתיאום מלא אל מול האסטרטגיה העסקית של הארגון ועל כן יש צורך ב"תפירת" פתרונות מקצועיים הנובעים מהצורך הייחודי של כל לקוח ולקוח. Deloitte מעסיקה למעלה מ- 3,500 מומחים המשמשים כיועצי אבטחת מידע אצל מגוון לקוחות ממגזרים שונים, ומהווים מוקד של ידע וניסיון נגיש

יועצ/ת אבטחת מידע וסייבר (GRC)

ל-Deloitte פירמה גלובלית ומובילה בעולמות הייעוץ דרוש/ה יועץ/ת אבטחת מידע וסייבר לתחום הGRC.

תיאור התפקיד:

Deloitte מציעה ללקוחותיה פתרונות אבטחת מידע מקצה לקצה בכדי לאפשר להם את היכולת להתמודד עם איומי הסייבר ביעילות ובמקצועיות רבה תוך היצמדות לצרכים העסקיים והמקצועיים של הארגונים השונים.

התפקיד כולל ליווי ארגונים בייעוץ לעמידה בתקנים ורגולציות, תכנון אסטרטגית אבטחת מידע וסייבר, ביצוע סקרי סיכונים ,כתיבת מדיניות ונהלים בתחום מערכות מידע ואבטחת מידע, ניהול סיכוני סייבר, ועוד..

דרישות:

לפחות 1-2 שנות ניסיון בתחומי אבטחת המידע והסייבר חובה

היכרות וניסיון מעשי עם רגולציות, מתודולוגיות ותקני אבטחת מידע וסייבר ( NIST/ Privacy law/ ISO/ GDPR SOC 2) חובה (לפחות אחת)

ניסיון בביצוע סקרי סיכונים - חובה

ניסיון בניהול פרויקטים בתחום אבטחת מידע וסייבר חובה

יכולת התנסחות וכתיבת מסמכים ברמה גבוהה בעברית ובאנגלית - חובה

ניסיון קודם בחברת ייעוץ/ אינטגרציה יתרון משמעותי

ניסיון קודם בביצוע פרויקטים בתחום BCP/ BIA- יתרון משמעותי

קורסים והסמכות רלוונטיות כגון- CISO , CISSP , CISM - יתרון

הכרות וניסיון עם עולם הCloud /תשתיות /שירותים יתרון

יכולת עבודה עצמאית, פרואקטיביות, יצירתיות, יחסי אנוש טובים ויכולת עבודה מול לקוחות/

העבודה במשרדי Deloitte במגדלי עזריאלי, תל אביב ובשילוב עבודה מהבית.

אנו ב- Deloitte מאמינים כי גיוון והכלה בקרב אנשינו הוא מרכיב קריטי בהצלחה שלנו ולכן אנו מטפחים תרבות ארגונית שמכילה ומאמצת גיוון על כל צורותיו.

Cloud Expert to Deloitte cyber center

We are recruiting a Cloud (Microsoft Office 365, Enterprise Mobility & Security (EMS) and Azure Active Directory (AAD)) expert to Deloitte cyber center in Israel.

Requirements:

Working experience in at least two of the areas listed below:

· 4+ years of experience in technical consulting, client problem solving, architecting and designing solutions

· 4+ years of hands-on technical experience with Microsoft 0365 enterprise-level messaging and collaboration services (Teams, Skype, One Drive, Exchange, SharePoint, O365) in implementation and operations.

· 4+ years of hands-on technical experience with enterprise-level systems management systems such as SCCM and endpoint engineering, or mobile device management (e.g. Intune) implementation or operations

· 4+ years of hands-on technical experience enterprise-with Identity and Access management and EMS services (Azure Active Directory, Azure Active Directory premium solutions, conditional access, SSO, MFA, PAM/PIM, and third party IAM solution integration with AAD) in implementation and operations.

At Deloitte, we believe that an inclusive mindset and diverse workforce are two of our greatest competitive strengths.

Thats why we continue to reinforce our commitment to foster inclusion.

Cyber Operational Intelligence analyst

Deloitte Israel Cyber Center is looking for a Cyber Operational Intelligence analyst.

Analyst Roles and Responsibilities:

Synthesize intelligence information into context; draw insights about the possible implications to customers.

Produce and/or curate client-specific cyber intelligence assessments based on incident analysis, alert trending, and campaign tracking.

Communicate tactical, operational, and strategic threat intel to MDR analysts to assist them in making decisions and to mitigate threats.

Gain an understanding of clients unique industry, mission, initiatives, cyber network, and staff.

Develop and execute plans for intelligence requirements, analytic products, and supporting workflows.

Collaborate with SOC, HUNT, and other applicable service teams to inform proactive and reactive operations.

Understand the governing concepts of SIEM technologies, including writing SIEM queries.

Determine how threat intelligence findings link to SIEM alerts and report content.

Utilize intel findings toward creation of actionable investigation objectives for threat hunt operations and provide intel context to reporting. Deliver intelligence briefings to stakeholders, as needed.

Required Skills and Experience:

At least 2 years work experience as a threat intelligence or network security analyst.

Self-motivated and able to identify challenges and develop and implement meaningful solutions.

Knowledge of networking concepts, protocols, and devices (Firewalls, Switches, Routers, etc.).

Knowledge of Threat Intelligence, including frameworks, threat groups, tactics, and techniques, and procedures (TTPs).

An understanding of the intelligence cycle and its application to Threat Intelligence.

Strong communication skills, both oral and written.

An understanding of geopolitical events and potential impacts to cyber risk profiles.

The ability to work collaboratively in a dynamic, team-based environment.

Preferred Skills and Qualifications:

Experience with threat research, threat intelligence platforms, vulnerability scanning tools, and other tools in the security space.

An understanding the governing concepts of SIEM technologies including writing SIEM queries.

Digital Forensics/ Incident Response (DFIR) experience.

Penetration test experience.

Experience working with Threat Intelligence Platforms and tools.

Network +, Security +, CEH Cyber Threat Intelligence training and/or certifications.

Familiarity with the dark web.

Full stack developer

Deloitte Cyber Center in Israel is looking for a talented Full stack developer.

You possess the following skills and experience:

- 2+ years of non-internship professional software development experience

- Programming experience with at least one language such as Java, C++, or C# including object-oriented design

- 1+ years of experience in architecture and design (architecture, design patterns, reliability and scaling) of new and current systems.

- Solid understanding of best coding practices including design, unit testing, and peer code-reviews.

- Demonstrated experience in a tech lead role in large, complex software projects

- Excellent problem solving skills; ability to simplify and innovate.

- Ability to work on a team with diverse experience and backgrounds.

At Deloitte, we believe that an inclusive mindset and diverse workforce are two of our greatest competitive strengths.

Thats why we continue to reinforce our commitment to foster inclusion

Sr. Red team Security Consultant

Deloitte Cyber Center in Israel is looking for a talented Sr. Red team Security Consultant

Work youll do:

· Conduct Red Team Assessments, Purple Team Assessments, Network Penetration Tests, Wireless Security Assessments, Vulnerability scanning & assessment and OnsiteRemote Social Engineering for our International clients worldwide

· Create and write comprehensive technical and managerial assessment reports including remediation recommendations

· Use automation and scripting to reduce manual processes, improving efficiency and enabling new capabilities

Requirements:

· 3+ years of experience performing offensive/attack-oriented security assessments (Red team, Purple Team, vulnerability scanning and assessments)

· Experience in scripting and developing tools in Python, PowerShell, bash etc.

· Proficiency in tools such as Nmap, Nessus, BurpSuite, Cobalt Strike, Metasploit, and Aircrack-ng

Preferred:

· lab-based certifications such as OSCP, OSCE, GPEN and GXPN

· Experience in buildingautomating RedBlue Team Infrastructure

· Previous Consulting or Big 4 experience

· Excellent English writing and verbal communication skills

Join us!

At Deloitte, we believe that an inclusive mindset and diverse workforce are two of our greatest competitive strengths.

Thats why we continue to reinforce our commitment to creating a culture where everyone has equal opportunity to grow, develop, succeed and be their truest selves.

Threat Intel analyst (TIA)

Deloitte Israel Cyber Center is looking for a Threat Intel analyst

The Deloitte Threat Intelligence & Analysis (TIA) team consists of engineers and analysts around the world who specialize in the tactics, tools and procedures used by cyber criminals. The Analyst will work within an interdisciplinary team that focuses on Research of APTs , tools and research methodologies in order to identify emerging cyber threats. The Analyst will be responsible for collecting information used to analyze the political, economic, social, and behavioral aspects of malicious cyber activity.

Analyst Roles and Responsibilities:

- Work with various intelligence collection and reporting tools and frameworks to produce reports.

- Respond to requests for ad-hoc reporting and research topics from management and analysts as required.

- Quickly understand and deliver on company and customer requirements.

- Aid in and participate in daily, weekly, quarterly, and yearly production reporting for clients, partners, and internal teams.

- Proven ability to pivot to find new malware and campaigns.

Desired Skills and Experience:

- Outstanding written and oral communication skills and the ability to prioritize work.

- Proven ability to understand and explain the behaviors of different types of complex organizations, from criminal groups to financial enterprises.

- Proven ability to translate abstract and technical information sets into specific recommendations that can be actioned by clients to enhance their security posture.

- Familiarity with cyber threats, defenses, motivations and techniques.

- Some Experience with intelligence analysis tools, methods and the intelligence lifecycle.

- Experience distilling raw information into actionable intelligence.

- Ability to write analytical information products.

- Ability to construct and analyze social network graphs.

- Knowledge of at least one foreign languages is a must (Mandarin, Russian, Farsi, Arabic, Korean) and related APT familiarity.

- Dark webDeep web search capabilities is a plus.

- REMalware Analysis capabilities is a plus.

Technical Knowledge:

- Strong understanding of threat analysis and enterprise level, mitigation strategies.

- Working knowledge of how malicious code operates and how technical vulnerabilities are exploited.

- Knowledge of operating systems and networking technologies in general.

- Knowledge of databases, query design, and how to analyze data thus obtained.

- Reverse Engineering skills is a plus.

At Deloitte, we believe that an inclusive mindset and diverse workforce are two of our greatest competitive strengths.

Thats why we continue to reinforce our commitment to foster inclusion.

Experienced Cloud Security Architect

If you want Join Deloitte's Advisory Cloud Cyber Services team and become a member of the largest group of cybersecurity professionals worldwide this is your opportunity. We are recruiting a Cloud expert to Deloitte cyber center in Israel.

Job Description:

Define cloud architecture aligned with business and technology needs

Developing technology solutions for our customers in cooperation with the cloud eco-system and cyber security tools.

You possess the following skills and experience:

4+ years experience in cloud architecture - must

HO experience with SAAS, GCP, AWS, AZURE cloud platforms must

Experience in Identity management and authentication systems and protocols (Active Directory, LDAP, SAML,OAuth, RADIUS) - must

High proficiency English must

Representative skills withing high level business and technology stakeholders

good knowlage with Security compliance and frameworks such as CSA CCM.

Experience in security auditing in cloud environment and in migration processes An advantage

Relevant cloud security certificate (AWS ,AZURE, CCSK , CCSP) An advantage