Senior Cyber Engineer
Role details
Job location
Tech stack
Job description
Deloitte Global is required by local law to include a reasonable estimate of the compensation range for this role for individuals applying to work in our Arlington, VA location. This compensation range takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and delivery model. We would not anticipate that the individual hired into this role would land at or near the top end of the range, but such a decision will be dependent on the facts and circumstances of each case.
Work you'll do
Responsible for supporting Security application patching, content, and development of process documentation. Serve as point of escalation for the Cyber Engineering Analysts. Provide support to Security Operations Center (SOC) security incident event management (SIEM) deployment in engineering responsibilities. Support the engineering responsibilities of the onboarding of new event sources, data feeds, applications, and devices as part of the SOC's SIEM. Responsible for data integrity by the review of all data feeds into the SOC's SIEM. Troubleshoot monitoring alerts from the SIEM infrastructure and SIEM agents and escalate to L5 Engineers when applicable. Assist in the testing of vendor patches for all Security applications. Maintain the SOC Engineering group in Service Now and ensure all request and incident service level agreements (SLA's) as met as required by stakeholders. Support all security applications/tools. Provide customer service and interact/work with other teams to complete daily tasks. Document and update SOC Engineering process procedures and runbooks. Assist internal users of the SIEM by designing and maintaining production-quality dashboards/reports. Interact with the SOC Monitoring team to better understand content needs for tuning and development. Actively seek to improve and develop new content based upon observed security activity.
Requirements
Employer will accept a Bachelor's degree in Computer Science, Information Technology and Cybersecurity, Business Administration, or related field and 60 months of experience in the job offered or in a Senior Cyber Engineer-related occupation OR employer will accept a Master's degree in Computer Science, Information Technology and Cybersecurity, Business Administration, or related field and 36 months of experience in the job offered or in a Senior Cyber Engineer-related occupation
Position requires applicants with a Bachelor's degree have 5 years of experience OR Master's degree have 3 years of experience in the following:
Scripting using Python and PowerShell.
Leading SIEM technologies (Splunk or ArcSight).
Planning, researching, and developing security policies, standards, and procedures.
Experience in a system administration role supporting multiple platforms and applications (Windows, Linux, Splunk).
Communicating network security issues to peers and lower management.
Administrating or deploying at least two of the following technologies: Unix administration, Windows Server administration, Active Directory, Windows Workstation, Routers/Switches management, Firewall Management, SANS/NAS, Web servers, IAM/AAA, IDS/HDS, System vulnerability scanning tools, application/database vulnerability scanning tools, mobile device analysis, or Secure coding.
- Must have Splunk Admin certification*
Benefits & conditions
At Deloitte, we value our people and offer employees a broad range of benefits. Our Total Rewards program reflects our continued commitment to lead from the front in everything we do-that's why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being.