Join Deloitte Cyber to help organizations navigate the evolving threat landscape through managed services, advanced analytics, and resilient security operations. In this role, you will support clients in strengthening cyber defense capabilities, simplifying complexity, and operating with greater confidence.
Work you'll do
As a Senior Consultant on the CDR Automation team, you will help clients evolve Security Operations Centers from playbook-driven automation toward AI-augmented, agentic operations.
- Design and develop automation and orchestration solutions using SOAR platforms to support and scale Security Operations
- Build and operationalize AI-assisted workflows, including autonomous triage, enrichment, and agent-driven use cases within SOC playbooks
- Develop integrations across security technologies using APIs, connectors, and orchestration platforms
- Define and implement operational improvements that reduce analyst effort, improve response efficiency, and strengthen SOC processes
- Manage implementation activities, stakeholder communications, and issue resolution across client, vendor, and Deloitte teams
The team
Cyber Defense & Resilience teams assist clients in defending against advanced threats by transforming security operations, and by monitoring technology, data analytics, and threat intelligence. They help manage and protect dynamic attack surfaces and provide rapid crisis and cyber incident response, thereby ensuring that clients can be ready for, respond to, and recover from business disruptions. Examples of work include Operational Resilience, Crisis & Incident Response, and Security Operations Center Transformation. As part of Deloitte’s Cyber Defense & Resilience portfolio, our SecOps teams’ partner with clients to strengthen security operations and cyber resilience. We deliver end-to-end services—from strategic assessments and innovation workshops to implementing next-generation SIEM and AI-SOC solutions—enabling proactive risk identification and mitigation across digital environments. Leveraging advanced analytics, AI-driven detection, agentic automation, and optimized data management, we provide continuous monitoring and rapid response to emerging threats. This integrated approach empowers organizations to build robust, future-ready security postures and confidently navigate an evolving cyber threat landscape.
Location: Bangalore, Hyderabad, Pune, Chennai
Shift Timings: General
Qualifications
Required:
- 6-10 years of experience developing solutions using Python or JavaScript
- Experience working in a Security Operations Center or Security Information and Event Management operations environment
- Experience building, testing, and maintaining Security Orchestration, Automation, and Response playbooks and automations in production
- Experience integrating systems through application programming interfaces in client-server, web, or microservices environments
- Knowledge of Transmission Control Protocol/Internet Protocol, Domain Name System, and Hypertext Transfer Protocol
- Experience using GitHub or other version control repositories
- Bachelor’s or master’s degree in Cybersecurity, Information Technology, Engineering, or a related field
Preferred:
- Experience integrating artificial intelligence services, agents, or large language model workflows into Security Orchestration, Automation, and Response or AI-SOC playbooks
- 6-10 years of experience in security information or technology engineering support
- Experience with security operations tools such as Security Information and Event Management, Endpoint Detection and Response, Web Application Firewall, Data Loss Prevention, or threat intelligence platforms
- Experience using MITRE ATT&CK for threat analysis or mitigation mapping
- Certified Information Systems Security Professional, GIAC Certified Intrusion Analyst, GIAC Continuous Monitoring, GIAC Certified Incident Handler, Certified Ethical Hacker, or equivalent certification
- Experience developing dashboards or widgets using Flask or Django
#Cyber_Defense & Resilience