Cybersecruity Incident Response Senior Manager - Arlington, VA
Arlington, VA

Job Description

Cybersecurity Incident Response Sr Manager

Location: Arlington, VA

Are you energized by helping organizations protect their data and build client trust? Do you want to work in one of the world's largest holistic internal cybersecurity organizations? If you're interested in proactively preventing, detecting, and responding to cyber-attacks across a complex global footprint, then Deloitte Global could be the perfect place for you. We're looking for an analytical thinker passionate about cybersecurity to join our team.

Work you'll do:

The Global Incident Response Senior Manager reports to the Service Owner - Incident Response. The role serves as the leader of Centralized Incident Response Team (CIRT) with authority to make important decisions on global cyber security incidents and CIR program improvements.

As part of the global Centralized Cybersecurity Incident Response team, this professional:

Strategic

* Acts as lead incident commander


* Acts as central escalation point for CIR services


* Oversees the execution and management of CIR Program


* Owns the management and update of CIR Operating Model and Plan


* Determines incident severity level and investigation objectives


* Provides significant input into the annual strategic planning and budget processes and identifies cost effective operations in a manner consistent with the strategic and budgetary requirements



Operational

* Provides oversight for CIR to follow all applicable policies, laws, and regulations


* Ultimate authority on determining incident severity level


* Retains overall authority for global cyber security investigations


* Responsible for day to day operations of regional CIRT


* Coordinates the cyber security IR process


* Leads investigation for major and global cyber security incidents


* Ensures CIR team maintains proper documentation throughout an incident


* Provides final decision on engaging CIR team & finalizes incident reports and facilitates follow up meetings


* Provides final approval on CIR incident report



Relationship Management

* Collaborates and coordinates with IR Member Firm Manager to ensure alignment


* Notifies CIRT members of an incident, and determines whether in-person or virtual presence is required


* Ensures CIR is properly staffed and requests additional CIRT resources as required


* Acts as primary point of contact for external stakeholders within the organization


* Communicates with CIR Service Owner and Centralized Incident Response Leadership (CIRL), including notifications/escalation and regular status updates for major incidents


* Provides direct guidance and oversight to all Incident Response Specialists.


* Maintains on-call availability for a 24x7x365 coverage


* Serves as a professional mentor for assigned staff about all professional development processes



This Deloitte Global role requires 30% travel.

What you'll be part of-our Deloitte Global culture:

At Deloitte, we expect results. Incredible-tangible-results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and lead global strategies and provide programs and services that unite our network.

In Deloitte Global, everyone has an opportunity to lead. We see the importance of your perspective and your ability to create value. We want you to fit in-with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out-with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark.

Deloitte Global supports our talented professionals in answering the question: What impact will you make?

Who you'll work with:

The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte's global network of firms around the globe.

How you'll grow:

Deloitte Global inspires leaders at every level. We believe in investing in you, helping you embrace leadership opportunities at every step of your career, and helping you identify and hone your unique strengths. We encourage you to grow by providing formal and informal development programs, coaching and mentoring, and on-the-job challenges. We want you to ask questions, take chances, and explore the possible.

Benefits you'll receive:

Deloitte's Total Rewards program reflects our continued commitment to lead from the front in everything we do - that's why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being needs. We provide the benefits, competitive compensation, and recognition to help sustain your efforts in making an impact that matters.

#GLBCybDef

Education

* Bachelor's degree: degree in business administration, a technology-related field, or equivalent education-related experience


* Master's degree preferred



Work experience

* Recommended minimum of 6 years of combined experience in the Information Security / Cybersecurity domain with a focus on incident response, network and endpoint security, developing defense-in-depth strategies, log analysis, vulnerability management and forensics


* At least 3 years holding a management and leadership role


* Proven track record and experience of the following in a highly complex and global organization:


* development of cross functional security operations and standards


* developing and driving information / cybersecurity strategy


* designing and driving implementation of a tailored governance framework and common security processes


* connecting closely with operational leadership to make strategy and governance relevant for day-to-day operations



Certification

* Professional security management certification, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or other similar credentials preferred.

Skills/abilities

* Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate strategic information security topics, policies and standards as well as risk-related concepts to technical and nontechnical audiences at various hierarchical levels
* Possess strong organizational skills to facilitate management and tracking of large numbers of incidents, events, and efforts.
* Ability to adapt and operate in a high-tempo, dynamic and stressful environment.
* Sound knowledge of business management and an expert knowledge of information / cybersecurity strategy and governance
* Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework
* Experience interacting, presenting and working with C-level executives (CEO, CIO, etc.)
* Experience recording and maintaining incident documentation within a ticketing system (preferred: ServiceNow)
* Experience with Endpoint Detection and Response tools (preferred: Cylance)
* Experience with Firewall solutions (preferred: CheckPoint)
* Ability to manage a global team in a matrix environment



All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Disclaimer: Nothing in this job description/posting shall constitute an offer or promise of employment. If you are not reviewing this job posting on our Careers' site (jobs2.deloitte.com) or one of our approved job boards we cannot guarantee the validity of this posting. For a list of our current postings, please visit us at jobs2.deloitte.com

Requisition code: DE19USAGTS005RB1348

*
*
*
*
*
*