USI- FY26 - Cyber Defense and Resilience- Google SecOps (GCP Chronicle) - Manager

Same job available in 5 locations

Bengaluru, Karnataka, India

Chennai, Tamil Nadu, India

Hyderabad, Telangana, India

Kolkata, West Bengal, India

Pune, Maharashtra, India

Back to search results
Back to search results

Position Summary

Cyber 

Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat landscape. Through powerful insights and managed services that simplify complexity, we enable businesses to operate with resilience, grow with confidence, and proactively manage to secure achievements. 

Position Summary  

Level: Manager 

Work you’ll do:  

As a Manager, you will be supporting the team/clients with their Cyber needs specifically helping them address Cloud Security concerns and navigate the journey to the Cloud on the Microsoft Sentinel Platform. This will include: 

  • Assist in designing and implementing secure, scalable, and resilient Google SecOps architectures for deploying SIEM and SOAR platforms that comply with enterprise security policies and regulatory requirements (e.g. GDPR, PCI-DSS). 
  • Support end-to-end deployment of log ingestion pipelines using a variety of data fabric technologies and API integrations (e.g. Bindplane + Cloud Feeds). 
  • Collaborate with SOC analysts and threat detection engineers to prioritize, develop, and tune threat detection content (rules) within Google SecOps to detect malicious behavior and adversaries within enterprise environments. 
  • Translate SOC processes to automation playbooks within SOAR to alleviate alert fatigue and scale alert triage and response. 
  • Develop and facilitate custom integrations between third-party platforms and security tooling and Google SecOps to support automated data ingestion, alert enrichment, and response. 
  • Assist in architecting and building robust case management solutions within Google SecOps SOAR to ensure strong operational metrics support and optimization of the analyst experience.  
  • Stay current on cyber security threats, vulnerabilities, and compliance trends to enhance organizational security posture.  

The Team:  

Cyber Defense & Resilience teams assist clients in defending against advanced threats by transforming security operations, and by monitoring technology, data analytics, and threat intelligence. They help manage and protect dynamic attack surfaces and provide rapid crisis and cyber incident response, thereby ensuring that clients can be ready for, respond to, and recover from business disruptions. Examples of work include Operational Resilience, Crisis & Incident Response, and Security Operations Center Transformation. 

Qualifications   

Must Have Skills/Project Experience/Certifications:  

  • 9+ years of experience in security operations, threat detection engineering, or enterprise IT security. 
  • Hands-on experience with Google Cloud’s SecOps tool stack and architecture (specifically SIEM and SOAR, FKA Google Chronicle and SIEMplify, respectively). 
  • Strong knowledge of security principles and frameworks such as MITRE ATT&CK and Killchain. 
  • Proficient scripting skills in Python for automation and integration development. 
  • Scripting skills in Gostash or Logstash for log normalization / parsing. 
  • Familiarity with ETL (Extract, Transform, Load) pipelines and associated concepts (e.g. Cribl, Bindplane, NXLog, Kafka)  

Good to Have Skills/Project Experience/Certifications:  

  • Certifications such as: Google Cloud Professional Architect, Google Cloud Professional Security Engineer, Certified Cloud Security Professional. 
  • Familiarity with Threat Hunting and Cyber Threat Intelligence fundamentals. 
  • Proficiency in data fabric technologies (e.g. Bindplane, Cribl). 
  • Foundational knowledge in infrastructure and networking fundamentals, such as IP networking, VPNs, DNS, load balancing, and firewalling concepts. 
  • Familiarity with Cloud infrastructure broadly, exposure to multi-cloud environments (AWS, Azure) 
  • Experience in multiple SIEM and / or SOAR tools (e.g. Splunk, XSOAR). 
  • Experience in Virus Total / Mandiant products and solutions, or Google Threat Intelligence. 
  • Familiarity with AI frameworks such as MCP and ADK for agentic workflow development / integration specific to SecOps tooling (e.g. SIEM, SOAR, GTI, ASM)   

Education:  

  • Bachelor’s degree in computer science, Cybersecurity, Information Systems, or related field (or equivalent work experience). 
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse   learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.
Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 318324