T&T-Cyber Consultant Job in Bengaluru at Deloitte

Deloitte is hiring for the role of T&T-Cyber Consultant!

Responsibilities of the Candidate:

• 24*7 analysis of the alerts escalated by the L1 Team
• Lead and coordinate response activities for High and medium security incidents
• Perform root cause analysis to determine the origin and impact of incidents
• Develop and implement containment, eradication, and recovery strategies
• Correlate data from multiple sources to identify and respond to security events
• Develop and maintain incident response playbooks and runbooks
• Ensure standard operating procedures (SOPs) are followed and updated as needed
• Escalate critical incidents to SOC L3 or other senior incident responders when necessary
• Review all the alerts handled by SOC L1 Triage team and provide suggestions to improve triaging of the alerts
• Document all actions taken during incident investigations and response
• Prepare detailed incident reports and post-incident reviews
• Communicate findings and recommendations to management and relevant stakeholders
• Participate in security audits and assessments
• Conduct regular reviews of incident response processes to identify areas for improvement
• Provide SIEM finetuning recommendations to reduce the false positive alerts
• Suggest new SIEM use cases to improve threat detection coverage
• Provide mentorship and guidance to L1 analysts

Requirements

• Strong understanding of networking and security fundamentals.
• Proficiency in analyzing logs and network traffic.
• Experience with malware analysis and reverse engineering.
• Knowledge of scripting and automation (e.g., Python, PowerShell).
• Excellent problem-solving and analytical skills.
• Strong communication and documentation skills.
• The L2 Incident responder shall have minimum 5 years of experience in Incident response, possess at least one of the following certifications,
• Security+
  • ECSA
  • GCFA
  • GCFE
  • CISSP
  • Any SIEM Certification