The job you are trying to view has expired. Please perform a new search to find current jobs.

T&T | Cyber: D&R | Deputy Manager | SIEM | Hyderabad

Deloitte -
Hyderabad, Telangana

Job details

Qualifications

BCS
Computer Science
Information security
Information Security
Bachelor's degree
IDS
Computer networking
DNS
ServiceNow
HTTPS
VPN

Full job description

Job requisition ID :: 103451

Date: Jun 25, 2026

Location: Hyderabad

Designation: Deputy Manager

Entity: Deloitte Touche Tohmatsu India LLP

T&T | Cyber: D&R | Deputy Manager | SIEM | Hyderabad

Job requisition ID : 103451
Location: Hyderabad
Entity: Deloitte Touche Tohmatsu India LLP

The team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks

Your work profile:

Responsible for adherence of SLA for all tickets and deliverables in the project

Advise and tracks remediation of issues found during an incident or vulnerability that is required to conclude a security investigation

Responsible for the validation and analysis of investigations within Security Operations Center (SOC) done by L1/L2

Key Skills Required:

Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field.

Minimum of 6-10 years’ experience manage large Security Operation Centers projects

Good understanding of SOC concepts and log review from various sources such as IBM QRadar SIEM, Palo Alto and SOAR

Responsible for completing the documentation of the investigation; determine the validity and priority of the activity and Carry out Level 3 triage of incoming issues and escalate to L4 if needed

Creation of SOPs and run book and maintain it.

Provide communication and escalation support to L1/L2 throughout the incident per the SOC guidelines.

Ensure that all security events and incidents (internal / external) are logged into ServiceNow and regularly updated and closed within the set SLAs

Strong technical understanding of network fundamentals and common Internet protocols, specifically DNS, HTTP, HTTPS / TLS, and SMTP

Knowledgeable in the fundamentals of firewall, IDS/IPS, EPP/EDR, FIM, WAF, VPN, and other security protective/detective controls.

Knowledge of email security threats and security controls, including experience analyzing email headers Experience analyzing network traffic using tools such as Wireshark, to investigate either security issues or complex operational issues

Familiarity with core concepts of security incident response, e.g., the typical phases of response, vulnerabilities vs threats vs actors, Indicators of Compromise (IoCs), etc.

Must be able to map security incidents with MITRE ATT&CK framework or the cyber kill chain

Consulting for creation of threat-based use cases will be an added advantage

Would be playing the role of a shift lead for L1/L2 teams

Must be creating Bi-weekly/ Governance reports around the SOC operations for the Senior Management

Certification’s requirements: IBM QRadar Admin/ IBM QRadar Associate Admin/ECSA

Jobseeker tools

Employer Tools

Browse

Stay Connected