Senior Manager- EMEA IR Solutions Leader

The Deloitte Global Cybersecurity function provides internal support to all Member Firms protecting them from cyber threats. The Cybersecurity organization delivers a comprehensive set of cybersecurity services to Deloitte member firms through regional delivery hubs and a Global Fusion Center. Within the Global Cybersecurity function, the Global Cyber Incident Response Team (GCIR) leads the internal Incident Response tasks.

What will your day-to-day be like?

• The EMEA IR Solutions Leader reports directly to the EMEA Incident Response (IR) Leader.
• Oversees EMEA IR technical solutions development in partnership with Asia Pacific (APAC) and Americas (AMER) solutions deployment leads.
• Responsible for supporting the EMEA IR Lead with EMEA investigations and assists with Asia Pacific (APAC) and Americas (AMER) investigations.
• Assists the EMEA IR Lead in setting strategy for EMEA incident response operations.
• Assists with staffing specialized roles to address unique IR team needs.
• Provides technical leadership needed for leading EMEA cyber incident response investigations including, containment, eradication and remediation activities.
• Assist in the drafting of post-incident reports to senior leadership to convey impact, origin, root cause, remediation and lessons learned.
• Interprets IR and red team report recommendations to work with key stakeholders on closing technical gaps as they are identified and to improve detection response capabilities within the SOC.
• Organizes proactive threat hunting activities for the GCIR team.
• Assists with EMEA investigative services including, but not limiting to, collection, documentation, preservation and analysis of incident evidence.
• Maintains rotating on-call availability for a 24x7x365 coverage in partnership with the AMER and APAC IR Solutions Lead(s).
• Maintains chain of custody of incident evidence.
• Provides physical security of collected data and devices.

What do we expect from you?

• Minimum 7-10 years of experience in Cybersecurity with a focus on Incident Reponse.
• Bachelor’s degree: degree in a technology-related field, or equivalent education-related experience.
• Understanding of incident response in a Cloud based environment and experience with cloud solutions (preferred: Microsoft Azure, O365 & AWS).
• Understanding of network and Active Directory security technologies as well as best practices.
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework.
• Experience interacting, presenting and working with C-level executives (CEO, CIO, etc.).
• Experience recording and maintaining incident documentation within a ticketing system (preferred: ServiceNow).
• Experience with Endpoint Detection and Response tools.
• Experience with Firewall solutions.
• Thorough understanding of SIEM technologies (preferred: Splunk).
• Experience and ability to code in JAVA, Python, PowerShell.

What is it like to work at Deloitte? 

Working at Deloitte will provide you with the opportunity to participate in the transformation of leading national and international organisations.

This environment will allow you to focus on your personal and professional growth while being surrounded by inspiring individuals. You will also be given the chance to participate in training programmes that will allow you to unlock your full potential.

Thanks to the diversity of our workspace, you will come into contact with a wide array of perspectives, individuals, challenges, and projects.

At Deloitte we are committed to making a positive impact on society, our clients, and you, our employees. 

In order to help us achieve this goal, we have integrated a series of programmes and benefits in our culture that include:

• A personalised training and career plan (specific/technical, languages, and soft skills).
• A culture of continuous, valuable feedback (upwards and downwards).
• Mentoring programmes based on your professional category.
• Volunteering programmes and social action initiatives with a national and international scope (WorldImpact).
• Cultural programmes and subsidised sports clubs (Deloitte Runners Club, padel, football, volleyball, and many more).
• Medical insurance and health service based at the office: GPs, nurses, physiotherapy, wellbeing, mental health, etc.
• Flexibility programme.
• Flexible remuneration plan and a range of benefits for forming part of Deloitte.

Who are we?

Deloitte is the leading professional services company in Spain and the world. With 22 offices in Spain and 169 offices around the world, we help organisations to address their transformation challenges through a multidisciplinary service approach that can be adapted to a variety of industries.

What is the next step?

1. If you believe this role is right for you, please click on ‘Apply now’ and complete your profile so we can assess your application.
2. Our recruitment team will get in touch to find out a bit more about you if they think you could be a good fit for the role.
3. From this stage onwards we will guide you through the selection process, which could mark the beginning of your Deloitte journey!

Click here to find out more about our Cyber team. Are you ready for the challenge?

What impact will you make?