Job Title: T&T | Cyber : D&R | Network Security | Assistant Manager | Mumbai
Location: Mumbai
The team
Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks.
Your work profile
As AM in our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: -
-
Manage and optimize WAF policies including OWASP rules, custom rule writing, API protection, rate limiting, bot management, virtual patching, false-positive reduction, SSL/TLS & CDN configuration, and onboarding of new applications.
-
Design, monitor, and mitigate Layer 7 and volumetric DDoS attacks including anomaly detection, rate control, ISP/CDN coordination, zero-day response, and DDoS playbook execution.
-
Administer enterprise DNS infrastructure including zone management, DNSSEC, geo-routing, GSLB configuration, redundancy planning, failover policies, and DNS anomaly monitoring.
-
Manage Secure Web Gateway / Proxy including URL filtering, cloud access control, CASB configuration, DLP enforcement, SSL inspection, AD/IdP integration, and shadow IT monitoring.
-
Perform continuous monitoring, log analysis, alert triage, rule tuning, troubleshooting, and incident coordination within 24x7 SOC environment.
-
Lead architecture design, advanced policy creation, SIEM/SOAR integration, mitigation strategy development, and infrastructure optimization for web-facing services.
-
Ensure regulatory compliance, documentation readiness, and high availability across internet-facing banking and digital payment platforms.
Key Skill Required
- 4-6 years of experience
- Administer Network Packet Broker (NPB) including traffic filtering, aggregation, SPAN/TAP integration, tool feed optimization, de-duplication, load balancing, throughput validation, and capacity planning.
- Manage Intrusion Prevention Systems (IPS) including policy configuration, signature tuning, custom signature development, firmware upgrades, attack simulation validation, alert analysis, and incident coordination.
- Administer Load Balancers including virtual server configuration, pools/nodes setup, SSL offloading, certificate lifecycle management, Rules scripting, HA/DR design, traffic steering, and performance optimization.
- Ensure secure traffic forwarding to IDS/IPS/SIEM tools while maintaining high availability, failover readiness, and infrastructure resilience.
- Provide 24x7 monitoring, operational support, alert triage, rule tuning, troubleshooting, and root cause analysis for network security incidents.
- Lead architecture optimization, advanced policy creation, and integration with SIEM/SOAR platforms to enhance detection and response capabilities.
- Maintain compliance alignment, documentation standards, and performance governance across BFSI network and data center environments.
- Education B. E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields