Cyber MDR - Consultant (Security Operations) New

• SIEM
• Incident Response
• Threat Hunting
• Firewalls
• IDS/IPS
• EDR
• Data Loss Prevention
• Security Operations Center (SOC)
• Log Analysis
• Confluence
• Incident Triage
• Playbook Execution
• Threat Intelligence
• Network Security
• Web Proxies
• Antivirus
• Security Event Monitoring

As a Level 2 Security Analyst in KPMG's Managed Detection and Response (MDR) team, you will be responsible for monitoring SIEM tools for security events, triaging alerts, and escalating or closing incidents as appropriate. You will validate incoming alerts to eliminate false positives, enrich them with additional context from internal and external data sources, and execute standard playbook procedures for routine event types. Your role involves continuously monitoring SIEM and logging environments for threats, intrusions, and compromises across firewalls, network devices, web proxies, IDS/IPS, DLP, and EDR/antivirus systems. You will assist in incident detection, containment, remediation, and communicate with external teams for proper incident resolution. Additionally, you will participate in threat hunting activities, document event analysis, write comprehensive incident investigation reports, and proactively improve security-related operational processes and procedures. You will also maintain shift logs, update knowledgebase tools such as Confluence, and conduct research on events of interest within IT security scope. The role requires working from the Bangalore office on a 24x7 rotational shift basis. You will also engage with clients, advise on Security Operations Strategy, Design, Maturity Assessment, and Optimization, and drive client calls and discussions on a day-to-day basis.