Cyber Security I Incident Response Senior Engineer, Cairo. Egypt
Connect to your career at Deloitte
Deloitte, established globally in 1845, is the world’s largest and leading professional services firm, providing Audit & Assurance, Tax & Legal and Consulting and related services to public and private clients spanning multiple industries. Present in more than 150 countries, Deloitte is distinct in its ability to help clients solve their most complex problems, from strategy to implementation.
Deloitte innovation hub (DIH) is a strategic initiative/priority established by Deloitte North & South Europe (NSE) to support our ambition to become the leading business transformation partner of choice for our clients and to expand and scale our delivery footprint across EMEA. With access to a scaled, diverse, highly skilled, motivated, and engaged workforce, DIH is delivering complex technical solutions for clients’ most complex business problems, across Portfolios that include ‘Strategy & Transactions’, ‘Customer’, ‘Engineering, AI & Data, ‘Enterprise, Technology & Performance’ and ‘Cyber’. DIH is aiming to become the destination for top talents in Egypt for a long, exciting career.
We invest in outstanding people of diverse talents and backgrounds and empower them to achieve more than they could elsewhere. Our work combines advice with action and integrity. We believe that when our clients and society are stronger, so are we. Our organization has grown in scale and diversity, providing services across the region, with our shared culture remaining the same. We aim to help clients realize their ambitions, make a positive difference in society, and maximize the success of our people. This drive fuels the commitment and humanity that run deep through our every action.
Connect to your opportunity.
As a Security Incident Response Senior Engineer, you will be assisting clients with response to Cyber Incidents and getting back to business. This includes data leaks, ransomware, and unusual network traffic caused by cyber criminals, ranging from insider threats to nation-state sponsored hackers. Your role would also include the following responsibilities:
- Technical investigations of cyber incidents: analysis of log files, Windows event logs (windows artifacts), Linux artifacts to correlations in EDR tooling, network monitoring tools and SIEM, example of toolsets that we typically work with are Splunk, Microsoft Security Suite and CrowdStrike Falcon. It’s most important that you can apply knowledge about (windows) forensic artifacts in any platform we face at our clients.
- In-depth analysis of malware, threat intelligence and other relevant sources.
- Tactical support such as advice on triage, containment, eradication, and broader coordination in cyber incidents.
- Forensic analysis of systems and networks.
- Memory forensics.
- Performing Compromise Assessments and Threat Hunting projects in SIEM and EDR tooling.
- Creation of custom scripts (using python) for parsing special log files, data sets and images, etc.
- Creation of complex timelines based on findings and observations.
- Member of the broader Deloitte Response Team, adding CIR skills to the overall team that includes privacy, crisis management, crisis communication, forensic investigations, and ICS/OT.
- Part of the EMEA and Global technical incident responder community to build a strong network and share knowledge base.
- Flexible working hours to support the customer during high-impact incidents.
To succeed in this role, you need to have the following:
- Master’s or bachelor’s degree in computer science (or related field).
- One or more Forensics Certifications such as GCIH, GCFE, GCFA, GNFA, GREM.
- At least 2 years of experience in Cyber Incident Response and digital forensics.
- Hands-on skills to perform sharp and in-depth analyzes, both using tooling such as EDR and network sensors, but also manual analysis, if the tools are not available.
- Affinity with offensive security work (pentesting etc.) is beneficial.
- Posses strong passion for ransomware intelligence and work well in challenging situations, you can see both the bigger picture, as well as the smallest traces
- Experience in systems and/or network administration is a highly advantageous.
- Ability to work under pressure and keep track of the big picture while performing in-depth analysis.
- Trust and Confidentiality in handling client sensitive information.
- Ability to prioritize and take ownership, even when in unchartered territory.
The following attributes are essential:
- Strong written, verbal and presentation skills.
- A willingness to work as part of a diverse team.
- A commitment to continuous improvement and lifelong learning.
- A passion for technology and a drive to deliver secure, high-quality solutions.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal abilities.
- Ability to work effectively in a fast-paced and dynamic environment.
- Proactive and self-motivated with a keen attention to detail.
Connect to your service line – Technology and Transformation
Distinctive thinking, deep expertise, and collaborative working. That’s what connects us. That’s what makes us Deloitte. If you want to help solve some of the biggest challenges around, join us. Together, we’ll make an impact that matters.
Personal independence
Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to several audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints. This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) with audit clients of the firm. The recruitment team will provide further detail as you progress through the recruitment process.
Connect to your Industry
“What attracted me to Deloitte were the endless opportunities and the collective experience of other like-minded individuals. Deloitte’s clients include many of the world’s largest organizations; I wanted to be part of a team that made a difference that I could be proud of.” Dan, T&T.
Connect with your colleagues
Location: Cairo. Egypt
Your Work, Your Way: We call our hybrid working vision Deloitte Works. And it does. We trust you to make the right choices around where, when, and how you work. You’ll be able to make decisions about how you work best, to be collaborative, learn from colleagues, share your experiences, build the relationships that will fuel your career and prioritize your wellbeing. Having great conversations with your team and your leadership paves the way for great collaborative ways of working.
Our commitment to you
Making an impact is more than just what we do: it’s why we’re here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before.
We want you. The true you. Your own strengths, perspective, and personality. So, we’re nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution. You can be sure we’ll take your wellbeing seriously, too. Because it’s only when you’re comfortable and at your best that you can make the kind of impact you, and we, live for.
Your expertise is our capability, so we’ll make sure it never stops growing. Whether it’s from the complex work you do, or the people you collaborate with, you’ll learn every day. Through world-class development, you’ll gain invaluable technical and personal skills. Whatever your level, you’ll learn how to lead.
Connect to your next step
A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you’ll experience a purpose you can believe in and an impact you can see. You’ll be free to bring your true self to work every day. And you’ll never stop growing, whatever your level.