Job Title:  T&T I Cyber-D&R I Consultant I Incident Response & Handling | Bengaluru

Job requisition ID ::  108278
Date:  Jul 14, 2026
Location:  Bengaluru
Designation:  Consultant
Entity:  Deloitte Touche Tohmatsu India LLP

T&T I Cyber-D&R I Consultant I Incident Response & Handling | Bengaluru
Job requisition ID : 108278 
Location: Bengaluru
Entity: Deloitte Touche Tohmatsu India LLP 

The team 

 

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at    how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks.  Learn more about Cybersecurity  

 

 

Your work profile 

 

As a Consultant in our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - 

 

  • Monitor and analyze security alerts from SIEM tools (e.g., SecOps,Splunk, QRadar). 
  • Perform initial triage, prioritization, and escalation of security incidents. 
  • Identify false positives and escalate legitimate threats to L2. 
  • Maintain incident tracking and documentation using ticketing systems. 
  • Ensure compliance with SOC runbooks and standard operating procedures. 
  • Perform in-depth investigation of escalated security incidents and alerts. 
  • Conduct root cause analysis, correlate logs across sources, and identify the threat actor's behavior. 
  • Lead incident response activities and provide recommendations for containment and remediation. 
  • Develop and tune use cases, detection rules, and correlation logic in SIEM platforms. 
  • Work closely with other teams for threat containment and post-incident reporting. 
  • Mentor L1 analysts and support their technical development. 

 

 

Key Skills required:

 

  • Hands-on experience with SIEM platforms (e.g., Google SecOps, Splunk, QRadar, Microsoft Sentinel). 
  • Familiarity with EDR tools (e.g., CrowdStrike, MS Defender). 
  • Knowledge of MITRE ATT&CK, Cyber Kill Chain, and incident response lifecycle. 
  • Strong understanding of network protocols, Windows/Linux OS logs, and threat vectors. 
  • Good analytical, communication, and documentation skills. 
  • Relevant certifications like CEH, CompTIA Security+, Splunk Core Certified, etc., are preferred. 
  • B.Tech/BE / B.Sc / BCA/ full time graduation / Master’s degree in Computer Science, Engineering/ Bachelor’s degree in Computer Science, IT, Cybersecurity, or equivalent 
  • 1-2 years of experience in SOC operations (L1).
  • Base location: Bengaluru
  • Professional is required to work from office.