Senior Consultant Cyber Engineering
About the role
The position supports the SOC as an escalation point identifying and addressing potential SIEM content/level I and II engineering security concerns as this role is the first line of operational support. This role is also responsible for supporting Security application patching, content creation as requested from all stakeholders, and development of process documentation.
Responsibilities
- Maintain ticket management and DevOps activity tracking to ensure accurate work intake, prioritization, and status reporting.
- Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment and customers.
- Create and maintain process documentation (runbooks, SOPs, workflows) to support consistent execution and knowledge transfer.
- Develop, tune, and support analytics/detection rules, including performance monitoring and optimization.
- Develop, maintain, and optimize playbooks/notebooks, including operational reliability and performance.
- Develop, maintain, and optimize Logic Apps, including operational reliability and performance.
- Develop, maintain, and optimize workbooks and dashboards to support detection engineering and SOC visibility.
- Support reporting needs tied to threat detection outcomes, metrics, and operational insights.
- Define and document required fields per data source to enable effective detection and investigation.
- Identify and remediate high-cost/expensive detections to improve signal-to-noise ratio and manage platform consumption.
- Maintain strong SOC partnerships and provide support for SOC inquiries related to the Azure and Microsoft Defender portals, including troubleshooting and operational guidance.
Requirements
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
Skills
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
Qualifications
- Bachelor’s degree or equivalent in Computer Science, Computer Engineering, Business Administration.
- Minimum 8 years of various technology experience.
- Minimum 3 years’ cyber security experience within SIEM Administration.
- Hands-on experience with Microsoft Sentinel, including building and tuning analytics rules, hunting queries, workbooks, automation, and managing the SIEM data model and workspace.
- Strong KQL proficiency for threat hunting, detection logic, investigation, and telemetry analysis.
Wage Range
A reasonable estimate of the current range is $97,600 to $200,600.
Additional Information
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Contact Information
EA_ExpHire
RITM10703562
Company Information
Deloitte Technology US (DT - US) helps power Deloitte's success, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
Team Information
Deloitte Technology US (DT - US) helps power Deloitte's success, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
Qualifications
- Bachelor’s degree or equivalent in Computer Science, Computer Engineering, Business Administration.
- Minimum 8 years of various technology experience.
- Minimum 3 years’ cyber security experience within SIEM Administration.
- Hands-on experience with Microsoft Sentinel, including building and tuning analytics rules, hunting queries, workbooks, automation, and managing the SIEM data model and workspace.
- Strong KQL proficiency for threat hunting, detection logic, investigation, and telemetry analysis.
Benefits
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Inclusive Culture
Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas, and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.