In this role, you will be an integral part of our world-class Global Event Monitoring Systems Team, Professionals must demonstrate a readiness to operate within a 24x7x365 environment, including the potential for holiday shifts and flexible scheduling. The ideal candidate will exhibit profound expertise in network security, endpoint protection, threat intelligence, and the operational mechanics of specific applications or IT infrastructure. Additionally, proficiency with Security Information and Event Management (SIEM) technologies, Endpoint Detection and Response (EDR) solutions and APT/Malware behaviour is essential. A comprehensive understanding of network traffic, commonly used ports, network assets, web traffic, protocols, and fundamental HTTP/S requests is required. The candidate should possess a substantial number of the following skills and/or experiences.
Work you'll do
As an Assistant Manager, Cyber Engineering on the Global Event Monitoring Systems team, you will be responsible for:
- Monitoring and analyzing cybersecurity events and incidents using Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and related technologies
- Assessing escalated alerts and monitoring outputs, validating identified events, and conducting investigations in accordance with documented procedures
- Providing guidance on incident response actions based on incident type and severity, and escalating issues to senior analysts or Tier 3 teams as needed
- Testing and validating new SIEM use cases, tuning existing alerts, and helping improve the accuracy of threat detection capabilities
- Supporting junior analysts through day-to-day guidance, mentoring, and contributions to procedural documentation and operating standards
The team
The Global Event Monitoring Systems team supports Deloitte’s cybersecurity operations by monitoring, analyzing, and escalating security events across enterprise environments. The team works across a follow-the-sun operating model and partners with broader cyber teams to help identify, investigate, and respond to potential threats. This role contributes to continuous monitoring, detection improvement, and operational excellence within the security operations environment.
Location: Hyderabad
Shift Timings: 11 AM to 8 PM
Qualifications
Required:
- Bachelor’s degree in Computer Science, Business Administration, or equivalent educational or professional experience
- 3+ years of experience in information security or cybersecurity with a focus on security event monitoring
- Experience working with Security Information and Event Management (SIEM) tools, including Splunk
- Experience using security tools such as CrowdStrike and Microsoft Defender and working with the MITRE ATT&CK Framework
- Experience analyzing log data from firewalls, proxies, endpoint detection and response tools, intrusion detection or intrusion prevention systems, Windows, Linux, Active Directory, and web servers
- Experience working with ticketing systems and security operations center processes
- Ability to work in a 24x7 environment, including rotational weekend support and 11 AM to 8 PM shift coverage
Preferred:
- Professional cybersecurity certifications such as Certified Ethical Hacker (CEH), CompTIA Security+, GIAC, or Splunk certifications
- Knowledge of Microsoft Entra ID (formerly Azure Active Directory), Amazon Web Services (AWS) CloudTrail, GuardDuty, Virtual Private Cloud (VPC) Flow Logs, Microsoft AIR, Qualys, and ThreatConnect
- Experience with Unix administration, Windows Server administration, Active Directory, Windows workstations, router or switch management, firewall management, web servers, identity and access management, intrusion detection systems, host detection systems, or vulnerability scanning tools
A few compliance/clarity improvements I made:
- Converted vague or subjective qualifications into more measurable, resume-verifiable requirements
- Removed softer phrasing like “exceptional English language proficiency” from required qualifications
- Consolidated overlapping responsibilities for clearer Deloitte-style structure
Our purpose
Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities.
Professional development
At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.
Benefits to help you thrive
At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
