| Company | Deloitte Touche Tohmatsu India LLP |
| Job Title | Consultant – Cyber Threat Hunting |
| Job Requisition ID | 100197 |
| Location | Mumbai |
| Designation | Consultant |
| Domain | Cyber Security – Detection & Response (D&R) |
| Primary Objective | Detect, investigate, and respond to cyber threats while improving organizational cyber resilience |
| Log Monitoring | Perform log monitoring, analysis, and correlation using Splunk, EDR, and other security tools |
| Incident Management | Conduct incident triage, root cause analysis, and escalate critical incidents to L2 and Incident Response teams |
| Threat Hunting | Perform proactive threat hunting across enterprise environments using SIEM, EDR, and network security tools |
| Threat Investigation | Investigate suspicious activities, anomalies, and Indicators of Compromise (IOCs) across endpoints, networks, and cloud environments |
| Threat Intelligence | Leverage threat intelligence feeds and integrate them into threat hunting activities |
| MITRE ATT&CK | Develop threat hunting hypotheses using MITRE ATT&CK Framework tactics, techniques, and procedures (TTPs) |
| Security Tools | IBM QRadar, Splunk, Microsoft Defender for Endpoint, SIEM, EDR, Network Security Tools |
| Detection Engineering | Create, tune, and optimize detection rules, use cases, and threat hunting queries |
| Incident Response Support | Assist with investigation, containment, mitigation, recovery, and collaborate with SOC teams |
| Reporting & Compliance | Support security reporting, compliance audits, KPI/metric tracking, and continuous improvement initiatives |
| Required Skills | Threat Hunting, SIEM, EDR, Splunk, QRadar, Microsoft Defender for Endpoint, IOC Analysis, Incident Response, Log Analysis, Threat Intelligence |
| Soft Skills | Analytical thinking, problem-solving, collaboration, communication, incident handling, attention to detail |
| Education | Any Graduate or B.E./B.Tech (Tier 1/2) in Computer Science, Information Technology, or related fields |
| Ideal Candidate | Cybersecurity professional with experience in SOC operations, threat hunting, incident investigation, SIEM, EDR, and enterprise security monitoring |
