| Job Title | T&T | Cyber – D&R | Incident Response & Handling |
| Job Requisition ID | 93352 |
| Posting Date | 08 Jan 2026 |
| Location | Bengaluru |
| Base Location | Bengaluru |
| Designation | Manager |
| Entity | Deloitte Touche Tohmatsu India LLP |
| Geography | Deloitte South Asia (India) |
| Work Mode | Work from Office |
| Business Area | Technology & Transformation (T&T) – Cyber |
| Team | Cyber Defense & Resilience (D&R) |
| Role Title | Cyber Security Operations Lead |
| Role Overview | Lead and manage SOC operations, acting as a bridge between SOC analysts and senior cybersecurity leadership to ensure rapid threat response and effective security strategy execution |
| Total Experience Required | 8+ years in cybersecurity operations |
| Leadership Experience | Minimum 3+ years in a lead role |
| SOC Support Level | L3 / L3+ Support |
| Core Responsibilities | Oversee daily SOC operations, guide analysts, ensure effective threat detection, incident response, and vulnerability management |
| Operating Systems Knowledge | Windows, Active Directory, DNS, Linux |
| SIEM Tools | QRadar, Microsoft Sentinel, Splunk, Chronicle |
| SOAR Tools | Cortex, Chronicle SOAR, Splunk SOAR (playbooks & automation) |
| EDR & Malware Handling | MS Defender, CrowdStrike, SentinelOne; malware analysis using Flare VM, REMnux |
| Reverse Engineering Tools | IDA Pro, Ghidra |
| Incident Management Tools | ITSM tools for incident handling and tracking |
| Security Domains | Security logs analysis, log quality review, system & network security |
| Leadership Duties | Lead & mentor SOC analysts, shift management, roster management |
| Incident Response | Coordinate IR activities, escalation, resolution, root cause analysis |
| Threat Hunting | Proactive threat hunting and investigations |
| Vulnerability Management | Scanning, prioritization, remediation tracking |
| Tool Configuration | SIEM tuning, detection improvement, security control implementation |
| Compliance Support | Assist audits and compliance activities |
| Reporting | Prepare SOC operational reports and metrics for management |
| Security Technologies | SIEM, EDR, IDS/IPS, Firewalls, layered security architecture |
| Security Frameworks | MITRE ATT&CK, NIST, CIS |
| Certifications (Preferred) | CEH, GCIA, GCIH, Security+; Splunk / QRadar certifications |
| Soft Skills | Action-oriented, proactive, strong problem-solving and communication skills |
| Education | B.Tech / BE / B.Sc / BCA / Master’s (Computer Science / Engineering) – Full Time |
| Deloitte Purpose | Deliver secure, vigilant, and resilient cyber solutions that enable business growth |
| Leadership Expectations | Integrity-driven, inclusive, agile, collaborative, and business-focused |
| Stakeholder Management | Strong influencing and client engagement skills |
| Delivery Excellence | Ensure timely execution, quality outcomes, and risk mitigation |
| Strategic Skills | Strategic thinking, analytical acumen, change management |
| Culture | Inclusive, diverse, people-first environment |
| Career Growth | Global exposure, upskilling, cross-business mobility |
| Interview Support | Deloitte interview preparation resources available |
| Fraud Advisory | Deloitte does not charge any fee for recruitment; caution against fraudulent offers |
