As a SOC Senior Consultant - FTH, you will help strengthen cyber incident detection, response, and threat intelligence capabilities for complex enterprise environments. You will work with cross-functional teams to monitor and investigate security events, coordinate response activities, and support continuous improvement of incident response processes. This role requires hands-on experience in security operations, threat analysis, and incident handling, along with the ability to operate effectively in a fast-paced environment.
Work you'll do
As a SOC Senior Consultant - FTH on the Detect & Respond team, you will be responsible for:
- Monitor, triage, and respond to cybersecurity alerts, security incidents, and threat intelligence indicators across enterprise environments
- Coordinate incident investigation, containment, and response activities with first responders, operations teams, managed security services, and business stakeholders
- Collect, review, and integrate commercial and open-source threat intelligence feeds with security monitoring and security information and event management (SIEM) platforms
- Develop incident documentation, analysis reports, findings summaries, and recommendations for process and control improvements
- Support threat hunting activities and maintain incident response program documentation, including runbooks and ticketing records
The team
Deloitte’s Detect & Respond (D&R) aims to combine sophisticated technologies and human intelligence to help the clients monitor, detect, investigate, and respond to known and unknown attacks. We help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. The Detect and Respond team delivers service to clients through following key areas:
Threat detection and response
Attack surface management
Threat Intelligence
Threat Hunting
Data Protection
Location: Hyderabad
Shift Timings: 2 PM to 11 PM
Qualifications
Required:
- Bachelor’s degree or 4 years of equivalent experience in cybersecurity, security operations, incident response, or threat intelligence
- 7+ years of experience in security operations, threat intelligence, and incident response
- Experience with the MITRE ATT&CK framework and threat actor attack pattern analysis
- Experience operating security tools including security information and event management (SIEM), firewall, intrusion detection systems (IDS), intrusion prevention systems (IPS), malware detection, data loss prevention, and identity and access management
- Experience investigating and responding to cybersecurity alerts and security incident reports in an enterprise environment
- Experience maintaining incident response documentation, including incident response runbooks
- Ability to participate in an on-call rotation for incident response
Preferred:
- Experience integrating commercial and open-source threat intelligence feeds with security monitoring platforms
- Experience coordinating incident response bridges across technical and business teams
- Experience developing incident analysis reports, findings summaries, and remediation recommendations for management
- Experience with threat hunting in an enterprise or managed security services environment
- Experience working with global delivery teams
#Cyber_Cyber Operate