L2 SOC Analyst - Cyber Security

Deloitte is seeking a L2 SOC Analyst to join the Risk Advisory, Cyber Security team at the Kyiv office.

If a path doesn't exist, create your own.

Deloitte is one of the leading international professional services firms that offers audit, consulting, corporate finance, enterprise risk, and tax and legal services.

Our vision and strategy, developed in collaboration with leadership and member firm partners from around the world, focuses on working together As One across geographic, functional, and business borders to deliver excellence in all of the services provided by the member firms

The role will involve:

• Analyse network and host activity in successful and failed intrusions by advanced attackers.
• Create and add custom signatures to mitigate threats to businesses.
• Have a deep understanding of network protocols and infrastructure designs, including some of the following: firewall functionalities, encryption, host and network intruder detection systems.
• Disrupt attackers by using tactical, technical and legal capabilities to eradicate the threat.
• Identify potential malicious activities such as memory and registry dumps and package captures.
• Demonstrate a solid understanding of advanced threats, continuous vulnerability assessments, and response and mitigation strategies used in cybersecurity operations.

Requirements:

• Knowledge of operating systems and network protocols.
• Previous experience in forensic analysis of networks, focusing on detecting malicious activity using network traffic.
• Experience working with security intelligence, data analysis, security incident response and forensic investigation teams.
• Knowledge of the current piracy techniques, vulnerability disclosures, data violation incidents and security analysis techniques.
• Demonstrable experience with Windows and/or Unix/Linux OS, including command line tasks and scripting.
• Knowledge of threat modelling and attack plan development.
• Highly-developed interpersonal, communication and organisation skills.
• An advanced level of English is essential.
  

Desired, but not required:

• Familiar with the tools and common techniques of assessment of commercial and/or open source vulnerabilities used to assess operating systems, network devices, databases and web servers.
• Previous experience as threat researcher and/or intelligence analyst.
• Knowledge of tools used to perform preliminary malware analysis.
• Strong scripting and task automation skills.
• Technical networking experience.
• Red team/blue team/purple team/pen-testing experience.

We offer:

• Involvement in a constantly growing, innovative project within a leading firm in the cybersecurity sector.
• Possibility to be involved in international projects, both within and outside of Europe.
• Working alongside young technicians in a dynamic environment.
• Professional development and specialised training.