Deloitte, Cyber Data Scientist, Cyber Intelligence Centre, Consultant to Manager, Reading or London

Role description

The cyber security landscape has changed dramatically over the past few years. High end and bespoke attacks that were once limited to nation-states are now in the public domain with businesses and individuals now subject to threats that conventional security technologies cannot defend against. Whether the risk is from an external threat actor (organised crime gangs, hacktivists, foreign intelligence agencies) or from within (disgruntled employees, contractors, unintended disclosures), the only way for businesses to secure themselves is to be vigilant in monitoring their estates and evolving their detection to keep pace.

That’s where you come in.

Our Cyber Intelligence Centre (CIC) uses a combination of SIEM (Security Information and Event Monitoring), Threat Hunting, and Big Data Analytics to detect these evolving cyber threats. Assisting organisations to protect and secure their networks, systems, applications, and information.

Working as part of a close-knit team, the Cyber Data Scientist works across technologies, leveraging Deloitte’s capabilities in Threat Intelligence and its experience in Cyber Risk Advisory to continuously develop new rules, analytics, capabilities and approaches to enable our customers to stay one step ahead of those who would do them harm.

Responsibilities

The Cyber Data Scientist works as part of a team developing new ways to detect the presence of malicious parties on our customer’s networks, leveraging conventional SIEM and Big-Data Technologies (i.e. Apache Spark and Apache Hive).

Typical tasks include:

Consuming Threat Intelligence and building an understanding of how attacks progress (use cases).
Developing hypotheses about how these use cases would manifest in customer datasets and developing tests to prove this.
Developing rules or analytics to enable these attacks to be detected as early in the life cycle as possible.
Defining new data sources to improve the quality of our service, and supporting the on-boarding of new data sources through the development of parsers if necessary.
Refining existing rules and analytics to improve detection and reduce false positives.
Working alongside analysts and support teams to support them in their investigations, train them when releasing new content, and identify ways to improve the service.

Additionally, you would be expected to get involved in parallel work-streams including reporting, data visualisation, and automation.

This is predominantly an internally facing role however the successful candidate would also be expected to engage with the wider business and our customers as necessary.

Requirements

Essential:

Experience in a Threat Hunting or Security Analysis role.
Experience in using mathematical approaches to identify patterns in data sets.
At least a 2:1 in a numerical subject.
Experience with one or more of the following: Python, SQL, R, Java, Scala.
Naturally inquisitive, with a strong interest in Cyber Security.
Excellent verbal and written communication skills.
Proactive approach to problem solving and identifying improvements
Ability to gain SC clearance.

Desirable:

· Experience with the following technologies would be advantageous:

o Apache Hadoop ecosystem (especially Apache Spark).

o SIEM technologies (HP ArcSight and Splunk preferred)

o Graph Databases (i.e. Neo4J)

· Experience in working alongside customers

· Experience in a Managed Service Environment

You are here: Risk Advisory

In a constantly evolving, complex risk environment, our market leading Risk Advisory professionals are trusted by organisations across the globe to support them in understanding, evaluating and mitigating risk.

Our clients demand industry experts who understand their challenges intimately and with whom they can build trusted relationships. They choose us because we provide bespoke solutions that deliver the power of Deloitte, bringing together: people they respect and enjoy working with; innovative technology; and an approach that allows them to make informed and intelligent risk decisions.

Our expertise spans all areas and sectors including technology risk, governance, internal audit, regulatory compliance, risk analytics, public sector and managed services. As a member of the team, you will work with inspiring, ambitious and supportive people who have diverse and extensive skills, experience and backgrounds. A move to Risk Advisory will help you to build a rewarding and balanced career.

About Deloitte

Our Purpose & Strategy

To make an impact that matters for our clients, our people and society – defines who we are and what we stand for. Our purpose provides the foundation for our strategy and our aspiration to be the undisputed leader in professional services: this is not about size, it’s about being the first choice. The first choice for the largest and most influential clients, and the first choice for the best talent.

What do we do?

Deloitte offers Global integrated professional services that include Audit and Risk Advisory, Tax, Consulting and Financial Advisory. Our approach combines intellectual leadership, industrial expertise, insight, consulting & problem solving capabilities, technology revolutions and innovation from multiple disciplines to help our clients excel anywhere in the world.

What do we value?

At Deloitte we foster a collaborative culture where talented individuals can produce their best work. We value innovative thinking, diverse insights and a genuinely distinctive level of customer service. We value difference, with respect at the heart of our inclusive culture, and we support agile working arrangements. Hear from some of our people already working at Deloitte in agile ways . We are proud to have received a Best for All Stages of Motherhood special award in 2016 as a Top Employer for Working Families .

Deloitte LLP is a limited liability partnership registered in England and Wales with registered number OC303675 and registered office at 2 New Street Square, London, EC4A 3BZ. Deloitte LLP is the United Kingdom affiliate of Deloitte NWE LLP, a member firm of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities.

Requisition code: 137873