| Job Title | T&T – Cyber – D&R – SOC, SIEM Consultant |
| Designation | Consultant |
| Company / Entity | Deloitte Touche Tohmatsu India LLP |
| Region | Deloitte South Asia |
| Country Coverage | India, Sri Lanka & Maldives, Mauritius |
| Primary Location | Delhi |
| Base Location | Gurgaon |
| Job Requisition ID | 92756 |
| Posted Date | 1 February 2026 |
| Way of Working | Work from client location |
| Practice / Team | Technology & Transformation (T&T) – Cyber – Detect & Respond |
| Role Overview | Oversee and manage day-to-day SOC operations for an MSSP environment, ensuring high-quality security monitoring, incident detection, response, SLA adherence, and continuous service improvement across multiple clients |
| SOC Operations Management | – Lead 24/7 SOC operations- Manage Tier 1/2/3 analysts, responders & engineers- Ensure SLA compliance- Shift planning & staffing |
| Incident Detection & Response | – Oversee detection, investigation & response- Incident escalation & coordination- Post-incident reviews & root cause analysis |
| Customer Relationship Management | – Primary point of contact for clients- Client performance reviews & reporting- Handle feedback & ensure customer satisfaction |
| Service Delivery Optimization | – Optimize SOC workflows & processes- Implement SOAR automation- Improve detection accuracy & reduce false positives |
| SOC Technology Management | – Manage SIEM, SOAR, EDR, IDS/IPS tools- Ensure proper log ingestion & monitoring- Tool upgrades & optimization |
| Threat Intelligence & Improvement | – Integrate threat intelligence into SOC workflows- Develop new use cases & detection logic- Proactive threat hunting |
| Team Leadership & Development | – Coach & mentor SOC team- Performance reviews & goal setting- Cross-training across tools & technologies |
| Compliance & Reporting | – Ensure compliance with ISO 27001, PCI-DSS, GDPR- Manage audits & regulatory requirements- Client & management reporting |
| Collaboration | – Coordinate with IR, engineering & risk teams- Engage vendors & technology partners |
| Educational Qualification | Bachelor’s in Information Security / Computer Science (Master’s preferred) |
| Experience Required | 2+ years in cybersecurity; MSSP or multi-client SOC experience preferred |
| Technical Skills | – SIEM (QRadar)- EDR, IDS/IPS- Incident Response- Threat Intelligence |
| Additional Technical Knowledge | – MITRE ATT&CK TTPs- Sigma rules & IDS signatures- SQL query syntax- Incident management process- SQL & Python |
| Certifications (Preferred) | CISSP, CISM, GIAC (GCIH/GCIA/GSOC), CompTIA Security+, CEH |
| Leadership Expectations | Integrity, collaboration, agility, analytical thinking, delivery excellence, risk management, strategic problem-solving, tech-savvy mindset |
| Soft Skills | Effective communication, stakeholder influence, empathy, inclusivity, engagement management |
| Career Growth | Leadership opportunities, global mobility, reskilling, Deloitte University learning |
| Work Culture | Inclusive, collaborative, purpose-driven, high-performance |
| Organization Purpose | To make an impact that matters |
| Fraud Advisory | Deloitte does not charge fees or authorize third parties for job offers |
| Legal Disclaimer | Deloitte refers to DTTL and its independent member firms; DTTL does not provide client services |
