Job Title:  T&T | Cyber: D&R | Incident Response | Deputy Manager | Delhi

The Team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at     how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Learn more about  Cybersecurity  

Your Work Profile

• Splunk Infrastructure Management: Maintain and optimize Splunk environments (on-premise and cloud).
• Ensure consistent and reliable log ingestion from diverse systems and applications.
• Data Onboarding & Management: Define and implement data onboarding processes, field extractions, and normalization.
• Collaborate with asset-owning teams to ensure forwarder coverage and log completeness.
• Alerting & Dashboards: Create and maintain dashboards and custom SPL queries for operational visibility.
• Ensure accuracy and effectiveness of alerting mechanisms within Splunk.
• Troubleshooting & Support: Investigate and resolve issues related to Splunk alerts and data ingestion.
• Provide solutions and recommendations for improving system performance.
• Automation & Documentation: Assist in developing automation tools for efficient Splunk management.
• Document procedures, configurations, and architectural changes.

Key Skill Required

• 5–8 years of experience in managing and engineering Splunk environments.
• Proficiency in Splunk Query Language (SPL) for creating searches, alerts, and dashboards.
• Experience with Splunk data onboarding, field extractions, and log normalization.
• Familiarity with AWS Cloud environments and integration with Splunk.
• General scripting knowledge (Python preferred) for automation and tooling.
• Strong troubleshooting skills and ability to resolve complex Splunk-related issues.
• Experience collaborating with cross-functional teams in enterprise environments.
• Strong documentation and communication skills.
• Ability to manage time effectively and meet operational goals.
• Education: Bachelor’s degree in information security, Computer Science, or a related field. A master’s degree in Cybersecurity or Business Management is preferred.