Job Title:  T&T | Cyber : D&R | SIEM Qradar | Consultant | Delhi

The team  

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks. Learn more about  Cybersecurity  

Your work profile  

As Consultant in our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - 

• Monitor security alerts and events from various sources, including QRadar SIEM.  
• Perform initial triage and classification of incidents.  
• Investigate alerts to identify potential security incidents.  
• Escalate confirmed incidents to SOC L2 Analysts and/or Incident Response Team.  
• Document incident details, actions taken, and resolution steps in the incident management system.  
• Assist in the containment and mitigation of security threats.  
• Utilize threat intelligence feeds and tools to enhance detection capabilities.  
• Generate and deliver security reports and metrics to stakeholders.  
• Participate in post-incident reviews to identify gaps and improvements in the SOC processes.  
• Stay updated with the latest security trends, vulnerabilities, and attack vectors.  
• Willingness to work in a 24x7 rotational shift model, including night shifts, is mandatory.  

Key skills Required

• 2+ Years of relevant experience in Cyber 
• Sound Cyber Security Principles and well versed in security domains of Endpoint , Network, Database, Cloud Security technologies like IPS, WAF, Firewall, Deception, Cloud Security, AV, EDR, .  
• Conduct senior level log analysis, proactive monitoring, mitigation & response to network & security incidents. Triage security events and carry out incident response steps.  
• Proactively Hunt & research potential malicious activity using tool like Cortex, Shodan, SIEM etc.  
• Identify Indicator of Compromise through static & dynamic analysis of commodity and 0-day malware  
• Perform advanced security event detection and threat analysis for complex and/or escalated security events.  
• QRadar, SOAR, MITRE Framework Attack Methodology.  
• Education B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields.
• CEH, CySA+ or other relevant security certifications.