| Job Requisition ID | 95169 |
| Job Title | Deputy Manager – SIEM (Cyber Defense & Resilience) |
| Company | Deloitte Touche Tohmatsu India LLP |
| Location | Mumbai (I-Think) |
| Alternate Base Location | Bengaluru |
| Designation | Deputy Manager |
| Practice | Cyber Defense & Resilience (D&R) |
| Domain | Security Information and Event Management (SIEM) |
| Experience Required | 7–10 Years |
| Education | Bachelor’s Degree in Information Security, Computer Science, or related field |
| Certifications Preferred | ITIL, CEH |
| Work Mode | Work From Office |
| Shift Requirement | Rotational Shifts Required |
| Primary Responsibility | Manage advanced SIEM monitoring, incident investigation, threat detection, and security operations activities |
| Incident Management | Conduct deep-dive analysis of SIEM alerts escalated by senior engineers and ensure closure within SLA |
| Threat Analysis | Correlate logs from multiple security sources to identify and investigate threats |
| Shift Leadership | Act as Shift Lead, manage handovers, task allocation, and operational continuity |
| SIEM Administration | Fine-tune SIEM use cases, optimize detection logic, and improve monitoring effectiveness |
| Detection Engineering | Recommend enhancements to security use cases based on operational findings |
| SOAR Collaboration | Participate in SOAR playbook design workshops and recommend automation opportunities |
| Automation Support | Work with developers to define and implement security automation requirements |
| Documentation | Prepare and review RCA Reports, Incident Response Checklists (IRC), Escalation Matrices, and Security Documentation |
| Audit Support | Ensure readiness for internal, external, regulatory, and compliance audits |
| False Positive Reduction | Coordinate with Content Management Teams to improve detection quality and reduce alert noise |
| Major Incident Support | Assist in investigation, response, containment, and root cause analysis during critical incidents |
| Service Management | Monitor and maintain MTTR (Mean Time to Resolve) targets and SLA compliance |
| Security Technologies | SIEM, EDR, IDS/IPS, Threat Intelligence Platforms, Incident Response Tools |
| Core Skills | Threat Detection, Incident Response, Security Monitoring, Log Analysis, Security Operations |
| Security Operations Knowledge | SOC Operations, Incident Lifecycle Management, Threat Hunting, Security Analytics |
| Leadership Responsibilities | Team coordination, shift leadership, operational governance, mentoring junior analysts |
| Communication Skills | Documentation, Reporting, Stakeholder Communication, Incident Escalation Management |
| Career Level | Deputy Manager |
| Ideal Candidate | Experienced Cyber Security professional with strong SIEM operations expertise, incident response skills, threat analysis experience, security automation exposure, and the ability to lead SOC operations in a shift-based environment |
