| Job Title | T&T | Cyber – D&R | Incident Response |
| Job Requisition ID | 91160 |
| Date Posted | 02 Feb 2026 |
| Designation | Deputy Manager |
| Entity | Deloitte Touche Tohmatsu India LLP |
| Practice / Team | Cyber – Detection & Response |
| Location | Bengaluru |
| Work Mode | Work from Office |
| Geography | Deloitte South Asia (India, Sri Lanka & Maldives, Mauritius) |
| Role Objective | Lead and execute end-to-end cyber incident response to protect client environments |
| Experience Required | 4–8 years in SIEM Monitoring & Cyber Incident Response |
| Core IR Knowledge | Incident Response Lifecycle, Cyber Kill Chain, MITRE ATT&CK |
| Operating Systems | Windows, Active Directory, DNS, Linux |
| SIEM Tools | QRadar, Microsoft Sentinel, other SIEM platforms |
| SOAR Tools | Cortex XSOAR, Splunk Phantom, Demisto |
| EDR Technologies | CrowdStrike, Microsoft Defender for Endpoint, SentinelOne |
| Log Analysis | Correlation across network, endpoint, application logs |
| Digital Forensics | EnCase, FTK; memory, disk & network forensics |
| Malware Analysis | Malware behavior analysis, obfuscation, basic reverse engineering |
| Incident Handling | Detection, triage, investigation, containment, eradication & recovery |
| Automation | Use SIEM, SOAR & EDR to accelerate response |
| Root Cause Analysis | Forensic investigations on impacted systems |
| Reporting | Incident reports, executive briefings, stakeholder communication |
| Process Management | Develop, optimize & maintain IR processes and playbooks |
| ITSM Tools | ServiceNow or equivalent |
| Monitoring | Log source health & visibility management |
| Threat Hunting | Network traffic, endpoint behavior & threat intelligence analysis |
| Exercises | Tabletop exercises, simulations & post-incident reviews |
| Metrics | Track IR KPIs and continuous improvement |
| Collaboration | SOC teams, IT operations, business stakeholders |
| Cloud Exposure | Azure, AWS, GCP (preferred) |
| Education | Bachelor’s degree in Computer Science / Cyber Security / related |
| Preferred Certifications | GIAC (GCIA, GCFA, GCIH), CEH, CHFI, Security+, CySA+ |
| Industry Exposure | Large enterprise or MSSP environments |
| Work Shifts | Willingness to work in 24/7 rotating shifts |
| Soft Skills | Strong communication, problem-solving & critical thinking |
| Leadership Expectations | Integrity, collaboration, resilience, influencing |
| Career Growth | Deloitte University, Leadership Centre, continuous upskilling |
| Inclusion & Culture | Inclusive, respectful, people-first environment |
| Purpose | Make an impact that matters |
| Compliance Note | Deloitte follows a strict, fee-free recruitment process |
