Cyber SOC Analyst/Consultant

About the Business: Cyber Defence and Resilience

Deloitte's Cyber Defence and Resilience team assists clients in addressing various aspects of cyber and strategic risks. This involves informing risk-based strategic choices, preparing for disruption, managing enterprise risks, and strategizing responses to data protection, processes, and technology risks. We offer advisory and managed services to help senior executives identify, assess, manage, and respond to incidents that could impact their competitive standing, assets, reputation, or financial health.

Our goal is to help clients develop and implement effective IT risk management strategies, balancing risk mitigation with cost efficiency. Our integrated solutions cover Cyber Strategy, Cyber Security, Cyber Vigilance, and Cyber Resilience.

Work You'll Do as a Cyber SOC Analyst/Consultant

• Provide 24x7 cybersecurity threat management within the Cyber Intelligence Center (CIC).
• Operate the service desk to track client service requests and security incidents.
• Conduct risk-based analysis of diverse log data to identify potential compromises.
• Monitor and analyze security alerts from Security Information and Event Management (SIEM) and other security monitoring platforms.
• Liaise with clients regarding security incidents and ensure timely remedial actions.
• Support T1/T2 security incident response investigations, including forensic and malware analysis, and prepare incident reports.
• Research the global cyber threat landscape using open-source channels and vendor feeds.
• Perform shift duty and standby support as required.

During your tenure at Deloitte, you will cultivate leadership and professional capabilities in areas such as inspiring purpose, driving agility, building diverse capability, influencing, collaborating, delivering value, business development, analytical acumen, effective communication, engagement management, change management, quality and risk management, sales excellence, strategic thinking, problem-solving, and tech savviness.

What We're Looking For

• Tertiary education in Information Technology, Information Security, Computer Science, Risk Management, Management Information Systems, or related disciplines, with a major in cybersecurity preferred.
• 1 year or more of experience in SOC operations, threat hunting, and global cyber threat landscape research is an advantage.
• Familiarity with cyber incident response methodologies, processes, and advanced investigative, compliance, and/or regulatory analytics.
• Professional security-related qualifications like CISA, CISM, CISSP, CEH, OSCP, OSCE are preferred.
• Strong technical knowledge of network topology and network security, including firewalls, IDS, IPS, VPN, and TCP/IP protocol.
• Ability to build client relationships, work under tight deadlines, prioritize, and manage multiple tasks.
• Strong analytical mind and problem-solving skills.
• A good team-player, self-motivated, and capable of independent work with minimal supervision.
• Excellent communication and interpersonal skills.
• Proficiency in both spoken and written English and Chinese.

Key skills/competency

• Cybersecurity
• Threat Management
• SOC Operations
• Incident Response
• SIEM
• Network Security
• Forensic Analysis
• Malware Analysis
• Risk Analysis
• Cyber Intelligence