| Company | Deloitte |
| Entity | Deloitte Touche Tohmatsu India LLP |
| Job Title | T&T | Cyber: D&R | Assistant Manager | SIEM |
| Designation | Consultant |
| Location | Delhi |
| Job Requisition ID | 101791 |
| Posting Date | 02 July 2026 |
| Experience Required | 4–6 Years |
| Education | Any Graduation Degree |
| Domain | Cyber Security – Detection Engineering & SIEM |
| Primary Role | Design, develop, maintain, and optimize SIEM detection use cases for threat detection and response. |
| Key Responsibilities | • Build and maintain SIEM detection rules.• Develop detection logic aligned with MITRE ATT&CK.• Tune alerts and reduce false positives.• Manage full detection lifecycle.• Work with SOC, Incident Response, and Threat Hunting teams.• Perform detection gap analysis.• Validate log quality and normalization.• Troubleshoot SIEM integrations and detection issues.• Maintain detection documentation. |
| SIEM Platforms | IBM QRadar, Google SecOps (Chronicle), or similar SIEM technologies |
| Query Languages | QRadar AQL, Google SecOps UDM Search |
| Security Frameworks | MITRE ATT&CK, Cyber Kill Chain |
| Required Technical Skills | Detection Engineering, Security Analytics, SIEM Engineering, Threat Detection, Threat Intelligence, Log Analysis, Alert Tuning, Detection Lifecycle Management |
| Log Sources | EDR, Active Directory, Cloud Platforms, IAM, Firewalls, DNS, Proxy, Network Devices, SaaS Applications |
| Additional Knowledge | Detection enrichment, Log normalization, Threat Intelligence (IOCs & TTPs), SOC workflows |
| Soft Skills | Analytical thinking, Collaboration, Documentation, Problem-solving, Communication |
| Best Suitable Profiles | SIEM Engineer, Detection Engineer, SOC L2/L3 Analyst, Security Engineer, Threat Detection Engineer, QRadar Engineer, Chronicle Engineer |
| Expected Salary (Delhi) | ₹12–18 LPA (Typical); ₹18–22 LPA for strong candidates (depending on skills and interview performance) |
| Interview Focus Areas | SIEM Architecture, QRadar/Chronicle, Detection Engineering, MITRE ATT&CK, Threat Hunting, Incident Response, Log Analysis, Query Writing, Alert Tuning, Windows Event Logs, AD Logs, Firewall Logs, EDR Integration |
| Overall Suitability | 8.5/10 – Strong fit for candidates with hands-on SIEM and Detection Engineering experience. |