Senior Consultant - Security Services, Vulnerability Assessment

Deloitte & Touche USA LLP is the U.S. member firm of Deloitte Touche Tohmatsu and services are provided by its subsidiaries, including Deloitte & Touche LLP, Deloitte Consulting LLP, Deloitte Financial Advisory Services LLP and Deloitte Tax LLP. Deloitte & Touche USA LLP’s subsidiaries are among the nation’s leading professional services firms, providing audit, tax, consulting, and financial advisory services through nearly 30,000 people in more than 80 cities. Known as employers of choice for innovative human resources programs, they are dedicated to helping their clients and people excel.Our innovative human resources programs, including our Diversity and Inclusion Initiative and our Women's Initiative, have earned Deloitte & Touche USA LLP many accolades including: "100 Best Companies to Work For in America" by Fortune magazine; Working Mother magazine's "100 Best Companies for Working Mothers"; DiversityInc - "Top 50 Best Companies for Diversity"; Essence's Top 30 Best Companies for
African-American Women List; Latina Style - One of The Best Companies for Latinas and Trainingmag.com - list of Top 100 companies.
 
Deloitte & Touche LLP's Enterprise Risk Services (ERS) practice is a global leader in helping clients manage risk and uncertainty, from the boardroom to the network. We provide a broad array of services that allow clients around the world to better measure, manage and control risks to enhance the reliability of systems and processes throughout the enterprise. With core competencies encompassing capital markets, control assurance, internal audit, regulatory consulting and security services, our ERS professionals offer a wealth of experience across a wide spectrum of industries.
 
Deloitte & Touche LLP's Security Services Group was specifically created to address our clients' needs for information protection. Our practitioners have hands-on experience not only in assessing complex networks and systems, but also in the design and configuration of complex security
controls. We have developed, tested, and refined our methodologies to efficiently provide high-quality and cost-effective services that help clients develop an enterprise approach to information security.
 
Our Security Services offerings include:
- Application Integrity
- Business Continuity Management
- Identity Management
- Infrastructure Security
- Privacy
- Security Strategy and Management
Infrastructure Security:
A Secure Infrastructure is necessary to deploy trusted applications. Technology infrastructure is the means to achieving high availability, scalability and efficient security. It also includes Secure Networking to identify vulnerabilities, detect intrusions, respond to incidents and monitor threats. Internal and external access to networks must be authenticated and information protected, whether it is in transit across the Internet or stored on a server. And in many cases, additional integrity and accountability issues such as
non-repudiation, archiving, access restriction and digital time-stamping need to be considered.
Infrastructure needs may include public key infrastructure, directory services, secure messaging, intrusion detection and enterprise systems security management. Integrated security solutions deal with a variety of security technologies including smart cards, biometrics, cryptography, firewalls and virtual private networks.
 
We are currently looking for Senior Consultant candidates with system security, vulnerability assessment and consulting background. 
Required Skills:
- Security Audit
- Penetration Testing-Network, Host, Applications
- Ethical Hacking
- Vulnerability Assessments-Network, Host, Applications
- Enterprise IDS Implementation and Testing
- Operating System and Application Hardening
- Incident Response Training
- Information Security Education
- System security and controls including:
- Attack and
penetration security
- Firewall 
- Identity management
- Encryption technology
- Assessment of network vulnerability
- Network configuration and administration
- Virus software
- Security auditing techniques
- Computer control environments
- UNIX Security
- NT/Windows 2000
Preferred technology experience with the following:  
- Firewall and router configuration, switches,  secure network architecture, VPNs, PKI, PMI, Portols, Cisco, PERL, python, C++, XML, HTML
- ISS, SNORT, sniffer technologies, Windows 2000/NT, Solaris, AIX , HP-UX, Red Hat Linux, Checkpoint
- IPSEC, SSL, SSH, VPN, Ethernet Token Ring, WAP, SMTP, FTP, Frame Relay, WAN, ATM, FDDI, DSL, ISDN, HP Openview, Sun NetManage, Cisco Works, Radius, Big Brother, F5
 
To be considered for this position the following are essential:
- BA/BS in information technology or related field, MS preferred
- CISSP, CCNA and/or CISA certification a
plus
- Minimum of  five years system security and controls experience
- Prior Big 5/consulting experience
- Excellent verbal and written communication
- Industry Experiences in financial services, high-tech, and /or healthcare a preferred
- Willingness to travel
General Responsibilities:
- Contribute to a strong client relationship through interactions with client personnel
- Understand engagement as it relates to client's business
- Demonstrate knowledge in some areas of industry or functional specialty
- Contribute to engagement planning and ensuring that products/deliverables meet contract/workplan
- Deliver services that meet Deloitte & Touche LLP task leader specifications
- Recognize and communicate opportunities to sell "add-on" work to client
- Prepare written reports at the engineering level, manager level, and executive levels
- Contribute to a positive team attitude
 Deloitte &
Touche USA LLP and its subsidiaries ("the Deloitte US Firms") are equal opportunity employers.Deloitte refers to one or more of Deloitte Touche Tohmatsu, a Swiss Verein, its member firms and their respective subsidiaries and affiliates. As a Swiss Verein (association), neither Deloitte Touche Tohmatsu nor any of its member firms has any liability for each other’s acts or omissions. Each of the member firms is a separate and independent legal entity operating under the names “Deloitte,” “Deloitte & Touche,” “Deloitte Touche Tohmatsu,” or other related names. Services are provided by the member firms or their subsidiaries or affiliates and not by the Deloitte Touche Tohmatsu Verein.
Deloitte & Touche USA LLP is the U.S. member firm of Deloitte Touche Tohmatsu. In the U.S., services are provided by the subsidiaries of Deloitte & Touche USA LLP (Deloitte & Touche LLP, Deloitte Consulting LLP, Deloitte Financial Advisory Services LLP, Deloitte Tax LLP and their subsidiaries), and not by Deloitte &
Touche USA LLP.
REQUIREMENTS
Please see Job Description