| Job Requisition ID | 95173 |
| Job Title | Manager – SOC & Threat Hunting |
| Company | Deloitte Touche Tohmatsu India LLP |
| Location | Mumbai (I-Think) |
| Designation | Manager |
| Practice | Cyber Defense & Resilience (D&R) |
| Domain | SOC, Threat Intelligence & Threat Hunting |
| Experience Required | 5–9 Years |
| Education | Bachelor’s Degree in Information Security, Computer Science, or Related Field |
| Certifications Preferred | CTIA (Certified Threat Intelligence Analyst), GCTI (GIAC Cyber Threat Intelligence) |
| Work Mode | Work From Office |
| Primary Responsibility | Lead threat intelligence, threat hunting, dark web monitoring, and cyber threat analysis activities |
| Threat Intelligence | Research emerging cyber threats, APT groups, attack campaigns, malware, and adversary tactics |
| Threat Hunting | Collaborate with Threat Hunting teams to identify hidden threats and create proactive detection strategies |
| APT Knowledge | Strong understanding of Advanced Persistent Threats (APT), TTPs, malware families, and C2 infrastructure |
| Threat Analysis | Analyze threat intelligence feeds, indicators of compromise (IOCs), attack patterns, and risk trends |
| Advisory Creation | Develop weekly tactical advisories and fortnightly strategic threat intelligence reports |
| Intelligence Dissemination | Classify and distribute Strategic, Tactical, Operational, and Technical intelligence to stakeholders |
| Dark Web Monitoring | Monitor dark web sources for potential data leaks, breaches, and exposed organizational information |
| Detection Engineering | Work with SOC and Content Development teams to create detection rules and SIEM use cases |
| Threat Intelligence Platforms | Use Threat Intelligence (TI) Platforms, OSINT Tools, and Dark Web Monitoring Solutions |
| Security Monitoring Tools | SIEM, EDR, IDS/IPS, Threat Intelligence Platforms |
| Incident Response Support | Provide intelligence support during investigations and cyber incidents |
| Research Responsibilities | Conduct analysis on malicious IPs, domains, vulnerabilities, social media threats, and OSINT sources |
| Reporting & Documentation | Prepare executive reports, threat profiles, risk assessments, and stakeholder presentations |
| Audit & Compliance | Ensure timely audit submissions and maintain accurate threat intelligence documentation |
| Vendor Assessment | Evaluate threat intelligence vendors and assess service effectiveness |
| Collaboration | Work closely with Red Team, Blue Team, Threat Hunting, SOC Operations, and Detection Engineering teams |
| Knowledge Sharing | Conduct internal training sessions and share intelligence findings with security teams |
| Core Technical Skills | Threat Intelligence, Threat Hunting, Malware Analysis, OSINT, Dark Web Monitoring, Incident Response |
| Soft Skills | Analytical Thinking, Documentation, Presentation Skills, Stakeholder Management, Communication |
| Industry Focus | Cyber Security Operations, Threat Intelligence, Security Monitoring, Cyber Defense |
| Career Level | Manager |
| Ideal Candidate | Cybersecurity professional with strong threat intelligence and threat hunting experience, expertise in APT analysis, SOC operations, malware research, dark web monitoring, and the ability to convert intelligence into actionable security controls and detection strategies |
