Cyber Operate- SOAR + Anthropic - Consultant

Same job available in 4 locations

Bengaluru, Karnataka, India

Chennai, Tamil Nadu, India

Hyderabad, Telangana, India

Pune, Maharashtra, India

Back to search results
Back to search results

Position Summary

Level: Consultant

Work you'll do

As a Consultant on the Cyber Operate team, you will be responsible for designing, developing, and maintaining security orchestration and automation solutions that improve security operations outcomes.

  • Design, develop, and maintain SOAR playbooks to automate alert triage, investigation, enrichment, and response activities.
  • Integrate the SOAR platform with Security Information and Event Management, Endpoint Detection and Response, threat intelligence, ticketing, email, Identity and Access Management, firewall, and cloud security tools.
  • Collaborate with Security Operations Center analysts, incident responders, and engineering teams to identify automation opportunities, improve response workflows, and optimize use cases that reduce manual effort.
  • Use AI-assisted playbook development, AI-augmented alert triage, and incident summarization capabilities to improve automation design, enrichment, case narratives, and escalation decisions.
  • Troubleshoot and enhance playbooks, connectors, and integrations; create dashboards and operational metrics; maintain documentation; and support continuous improvement of security operations processes.

The team

Cyber Operate teams manage clients' critical cyber assets either as a fully managed service or in partnership with clients. They deliver skilled talent, cutting-edge technologies, and robust processes to operate client cyber capabilities. This includes managing the identity lifecycle, security operations, threat intelligence, application security, business transformation, and ensuring continuous compliance. Services include Cyber-as-a-Service, Managed Application Security, and Managed Extended Detect & Respond (MXDR).

Location: Bengaluru/Hyderabad/Pune/Chennai

Shift Timings: 2:00 PM to 11:00 PM IST, with flexibility required based on client expectations, engagement demands, and time zone coverage. Provide on-call and after-hours support for critical security incidents, escalations, and operational needs. Flexibility to collaborate with global teams across different time zones as required.

Qualifications

Required:

  • 3+ years of experience in cybersecurity, SOAR engineering, or security automation
  • Experience with SOAR platforms such as Cortex XSOAR, Splunk SOAR, Swimlane, IBM Resilient, or Tines
  • Experience with Security Operations Center operations, Security Information and Event Management workflows, incident response, and case management processes
  • Experience integrating application programming interfaces, webhooks, and third-party security products into automation workflows
  • Experience with Python, PowerShell, Bash, or JavaScript Object Notation-based workflow logic
  • Experience across security domains including endpoint, email, identity, network, cloud, and threat intelligence
  • Bachelor’s degree in Computer Science, Cyber Security, Information Security, Engineering, or Information Technology

Preferred:

  • Experience with Amazon Web Services, Microsoft Azure, or Google Cloud Platform and their security services
  • Experience with MITRE ATT&CK, threat detection engineering, and response orchestration practices
  • Experience with ServiceNow or Jira
  • Certifications in security, automation, or vendor platforms
  • Experience with AI-augmented SOAR capabilities including AI-assisted playbook generation, natural language automation building, and machine learning-based alert triage
  • Experience applying large language model concepts to security automation, including prompt engineering, incident summarization, and human-in-the-loop decision frameworks
    #Cyber_Cyber Operate
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas and perspectives, and bring more creativity and innovation to help solve our clients’ most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.
Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 354139