Cyber - Strategy and Transformation - Consultant - ServiceNow - SecOps VR

Same job available in 4 locations

Bengaluru, Karnataka, India

Chennai, Tamil Nadu, India

Hyderabad, Telangana, India

Pune, Maharashtra, India

Back to search results
Back to search results

Position Summary

Cyber

Deloitte Cyber understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful insights to help our clients navigate the ever-changing threat design and technology as we partner with clients to transform finance.

Position Summary

Level: Consultant

Work you’ll do:

  • Support technical workshops, gather requirements, and design customized ServiceNow SecOps solutions (VR, SIR).
  • Leverage Flow Designer and Integration Hub to create automated remediation workflows, reducing manual tasks and MTTR (Mean Time To Remediate).
  • Architect integrations between ServiceNow VR and third-party scanners (e.g., Qualys, Tenable, Rapid7) and SIEM systems (e.g., Splunk, Sentinel).
  • Create, maintain, and enhance executive dashboards, reports, and Performance Analytics to track vulnerability aging, SLA compliance, and risk metrics.
  • Advise clients on leading practices for vulnerability lifecycle management and cybersecurity risk mitigation.
  • Understand the business requirement and define & document epics, user stories, create UI mock-ups and have a roll-up the sleeves approach to make things happen.
  • Facilitate service now training and support team on complex system configuration
  • You will collaborate with our clients to resolve their business problems by translating functional requirements into technical solutions.
  • You will be responsible for end-to-end application design, workflow configurations, and customizations.

Key Responsibilities (Vulnerability Response)

  • Configure and administer ServiceNow Vulnerability Response: sources, vulnerability items, state model, assignment, SLAs, notifications, and remediation tasking.
  • Integrate and maintain ingestion from vulnerability scanners/tools to ServiceNow VR application (e.g., Qualys, Tenable, Rapid7) and validate data mapping, schedules, and error handling.
  • Maintain and troubleshoot MID Server integrations and API ingestion from vulnerability scanners.
  • Drive normalization and data quality: CI/asset matching to ServiceNow CMDB, deduplication rules, exception handling, lifecycle management, and backlog hygiene.
  • Build automations with Flow Designer/Integration Hub for routing, enrichment, reminders/escalations, and remediation verification/closure.
  • Partner with IT Ops/app owners to coordinate workflow alignments in ServiceNow for patching/remediation, manage dependencies, and resolve ownership gaps.
  • Define and publish dashboards/KPIs (e.g., vuln aging, SLA compliance, remediation throughput, critical exposure by service/BU) in ServiceNow.
  • Support governance: audit-ready evidence, change/release management, create technical documentation, including runbooks, design documents, and user guides.

Optional Responsibilities (Security Incident Response)

  • Support implementation of Security Incident Response (SIR) and Threat Intelligence modules.
  • Configure Configuration Compliance (CC) for checking policy misconfigurations.
  • Assist with ServiceNow platform upgrades, patching, and testing (ATF - Automated Test Framework).

The Team:

Cyber Strategy & Transformation teams develop and transform cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. They keep the enterprise a step ahead of the evolving threat landscape and give stakeholders confidence in the organization's cyber posture. Services include the design of cyber organization, governance, and risk assessments. Services also encompass Cybersecurity Assessments and Frameworks, Cyber Transformation Management, Technology Software and Asset Compliance Management, Third Party Risk Management, Cyber Risk and Compliance, Solution Design and Implementation, and Cyber Risk Analytics and Quantification Reporting.

Qualifications:

Must Have Skills/Project Experience/Certifications:

  • 2- 4 years of ServiceNow experience (Admin/Developer/Platform).
  • Hands-on experience implementing or operating ServiceNow Vulnerability Response.(at least 1 years of hands-on experience)
  • Strong understanding of vulnerability management lifecycle (scan → triage → prioritize → remediate → verify/close) and CMDB/asset data concepts.
  • Working knowledge of integrations (REST/API; MID Server where applicable) and automation (Flow Designer).
  • Proficiency in JavaScript, REST/SOAP APIs, and Flow Designer.

Good to Have Skills/Project Experience/Certifications:

  • ServiceNow CSA (Mandatory), CAD and VR/SecOps-related CIS-certifications.
  • Scripting (ServiceNow JavaScript), performance tuning, and large-scale data ingestion.
  • ServiceNow Certified Application Developer (CAD).
  • Experience with other SecOps modules (Threat Intelligence, Configuration Compliance).

Core Skills:

ServiceNow VR & SecOps Suite, Vulnerability Life Cycle Management (Scan – Triage – Prioritize - Remediate – Close), CMDB, Flow Designer/Integration Hub, integrations, reporting/dashboards, Stakeholder coordination, good communication, technical documentation and presentation.

Education: 

  • Bachelor’s/ master’s degree in information technology or related field

Location: 

  • Bengaluru/Hyderabad/Pune/Chennai/Kolkata
Our purpose

Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. 
Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas and perspectives, and bring more creativity and innovation to help solve our clients’ most complex challenges. This makes Deloitte one of the most rewarding places to work.
Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.
Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.
Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 340426