| Job Title | T&T | Cyber: D&R | Deputy Manager | SIEM |
| Job Requisition ID | 103451 |
| Designation | Deputy Manager |
| Entity | Deloitte Touche Tohmatsu India LLP |
| Location | Hyderabad |
| Business Unit | Technology & Transformation (T&T) – Cyber Defense & Response (D&R) |
| Practice Area | Security Operations Center (SOC) / SIEM Operations |
| Experience Required | 6–10 years of experience in Cyber Security and SOC Operations |
| Education | Bachelor’s Degree in Computer Science, Information Security, Cybersecurity, or related field |
| Role Summary | Lead SOC operations, validate and analyze security investigations, manage SIEM platforms, oversee incident response activities, and provide governance reporting while acting as Shift Lead for L1/L2 analysts. |
| Key Responsibilities | • Ensure adherence to SLAs for tickets and deliverables• Validate and analyze investigations conducted by L1/L2 SOC teams• Perform Level-3 incident triage and escalation• Track remediation of vulnerabilities and security incidents• Create and maintain SOPs and Runbooks• Support incident response and investigations• Manage ServiceNow ticket lifecycle• Generate governance and bi-weekly SOC reports for senior management• Lead and mentor L1/L2 SOC teams |
| SIEM & Security Tools | • IBM QRadar SIEM• Palo Alto Security Solutions• SOAR Platforms• ServiceNow |
| Technical Skills Required | • Security Operations Center (SOC) Management• Incident Response & Threat Investigation• Log Analysis & Monitoring• Vulnerability Management• Security Event Correlation• Threat Hunting Concepts |
| Networking Knowledge | Strong understanding of DNS, HTTP, HTTPS/TLS, SMTP, TCP/IP, and Internet protocols |
| Security Technologies | Firewall, IDS/IPS, EDR/EPP, FIM, WAF, VPN, Email Security Controls |
| Investigation Skills | • Network Traffic Analysis using Wireshark• Email Header Analysis• Indicators of Compromise (IoCs)• Threat & Vulnerability Assessment |
| Cybersecurity Frameworks | • MITRE ATT&CK Framework• Cyber Kill Chain Methodology |
| Additional Preferred Skills | • Threat-based Use Case Creation• SOC Governance Reporting• Security Operations Consulting |
| Leadership Responsibilities | Shift Lead for L1/L2 teams, escalation management, reporting to senior leadership |
| Mandatory Certifications | IBM QRadar Admin / IBM QRadar Associate Admin / ECSA |
| Career Level | Mid-Senior Management |
| Suitable For | SOC Leads, SIEM Engineers, Cyber Security Analysts (L3), Incident Response Specialists, Threat Monitoring Professionals |
| Posting Date | 25 June 2026 |
| Key Advantage | Opportunity to lead enterprise SOC operations, incident response, SIEM governance, and cybersecurity monitoring programs within Deloitte’s Cyber Defense & Response practice. |
