Security Consultant- SecOps
NTT DATA
5 - 8 years
Mumbai
Posted: 28/06/2026
Job Description
Title: Security Consultant- SecOps
Location: Mumbai/ Gurgaon/ Bangalore
Experience: 5-8 Years
Must have Skills:
- SIEM detection engineering
- Threat hunting, incident response
- SOAR automation
- Proven ability to design and implement detection frameworks mapped to MITRE ATTACK
- Reduce analyst triage workloads through Python automation, and communicate security findings
- Familiar with Zero Trust principles, SOAR/XDR technologies, and security risk frameworks including NIST CSF and OWASP.
Key Accountabilities
As a Security Consultant for SecOps domain in the APAC Security Consulting practice of NTT Ltd.s Security business, this role will execute and lead client engagements focusing on the delivering and management of Cybersecurity consulting practice work for India and wider APAC region. This position would be having following key responsibilities while reporting to the Regional Leader for India Security Consulting services:
- Performing SOC / SecOps maturity gap assessments, determining risks, and recommending mitigation actions
- Designing On-premise and co-managed Advanced SOC for clients (spanning People, Process and Technology controls)
- Advanced SOC GRC Advisory work (policies, processes, procedures, standards etc.)
- Hands on knowledge on MITRE ATT&CK
- Working knowledge of Zero Trust Security Model and Architecture in the SOC parlance
- Working knowledge of SASE, PAM, SOAR, XDR technologies and industry best practice controls
- Carry out pre-sales engagement for projects relating to SecOps / SOAR / SIEM / Cyber Fusion SOCs
- Working knowledge of security risk and control frameworks such as NIST CSF
- Support security consulting pre-sales work (e.g. writing SoWs, proposals etc.)
- Monitor application and infrastructure alerts across production and staging environments using Dynatrace, App-Dynamics, Grafana, Kibana, and Datadog tracking SLA adherence and synthetic alert status around the clock.
- Investigate alert triggers to identify root causes (application errors, server resource spikes, failed synthetic checks), document findings, and route incidents via ServiceNow.
- Reducing alert triage time in production
- Tune SIEM correlation rules across Splunk and Microsoft Sentinel, reduce false positive alert volume; document tuning rationale in written summaries shared with the SOC team and management stakeholders.
- Investigate security events including authentication failures, abnormal HTTP traffic, privilege anomalies, and infrastructure alerts; produced structured Root Cause Analysis (RCA) documentation in ServiceNow.
- Monitor log ingestion health across enterprise production environments, proactively identifying and escalating data gaps before they create detection blind spots.
Experience Skills and Qualifications
As the Security Consultant your skills and qualifications will include:
- Possess at least 7 years of working experience related to information security consulting with a minimum of 5 years of hands-on experiences on SOC, Threat Hunting practice areas.
- Required degree level education, or significant experience and track record with tertiary qualifications on relevant domains, including computer science, computer engineering and information security
- Advanced Network Security, Threat Detection and Incident Response skills
- Information security certifications such as CHFI, GCFA, Security+, ISO 27001 LI, CISSP
- Experienced in supporting consulting pre-sales work (e.g. writing SoWs, proposals etc.)
Services you might be interested in
We Search & Apply Jobs for You!
Our team scans through 1000s of opportunities and applies to roles best suited to your profile
Save 100+ hours and focus on what matters - cracking interviews and landing offers.
