Cyber_KDNI_TH/TI - Assistant Manager

Job Title: Threat Hunting and Intelligence Lead
Location: Bangalore
Department: MDR – TH/TI

 

Job Summary:

We are seeking a highly skilled and proactive Threat Hunting and Intelligence Lead to spearhead our proactive cybersecurity initiatives. This role is responsible for leading a team of threat hunters and intelligence analysts to detect, analyze, and respond to advanced cyber threats. The ideal candidate will have a strong background in threat intelligence, incident response, and security operations, with a passion for staying ahead of emerging threats. He/she will help design, build, and deliver in the strategic direction of KPMG's threat hunting and threat intelligence function, which supports a diverse portfolio of clients

Key Responsibilities:

• Lead the threat hunting and cyber threat intelligence (CTI) functions within the Security Operations Center (SOC), defining long-term strategy and ensuring scalability to meet client needs. 
• Develop and execute proactive, hypothesis-driven threat hunting strategies to detect and mitigate advanced threats across diverse environments.
• Oversee the daily operations of the threat intelligence team, ensuring timely collection, analysis, and dissemination of actionable intelligence to internal stakeholders and clients. 
• Conduct in-depth research on sophisticated threat actors, their evolving tactics, techniques, and procedures (TTPs), and motivations—leveraging advanced intelligence platforms and tools. 
• Analyze threat intelligence from internal and external sources to assess relevance and potential impact on client environments. 
• Collaborate with incident response, SOC, and vulnerability management teams to enhance detection, response, and remediation capabilities. 
• Build and maintain threat detection use cases, playbooks, and automation workflows to improve operational efficiency. 
• Conduct root cause analyses and post-incident reviews to continuously improve threat detection and response processes. 
• Develop and deliver high-quality intelligence reports, dashboards, and briefings tailored to client-specific threats and business risks. 
• Establish and enforce best practices across the intelligence lifecycle—from requirements gathering to analysis and dissemination—ensuring intelligence outputs are timely, accurate, and relevant.
• Stay abreast of emerging cyber threats, vulnerabilities, malware, and attack methodologies by monitoring threat feeds, industry reports, and security research. 
• Evaluate and integrate new intelligence tools and technologies, ensuring the team remains current with evolving capabilities and trends. 
• Serve as the primary point of contact for threat intelligence discussions with internal and external stakeholders, acting as a trusted advisor and aligning intelligence services with business objectives. 
• Mentor and develop junior analysts and threat hunters, fostering a culture of continuous learning and operational excellence.

Essential Qualifications:

• Bachelor's degree in computer science, Information Security, or a related field (or equivalent experience). 
• 7+ years of experience in cybersecurity, including at least 5 years in threat hunting or threat intelligence and 3+ years in a leadership or management role. 
• Deep understanding of threat actor tactics, techniques, and procedures (TTPs), including the MITRE ATT&CK framework and the cyber kill chain. 
• Proficiency with SIEM (e.g., Splunk, QRadar), EDR solutions, and threat intelligence platforms. 
• Hands-on experience with scripting languages such as Python or PowerShell for automation and data analysis. 
• Proven track record in building and scaling threat intelligence programs, ideally within a managed security services environment. 
• Strong grasp of the global cyber threat landscape and its implications across industries. 
• Ability to translate complex technical threats into business risks and effectively communicate with both technical and non-technical stakeholders. 
• Excellent communication, presentation, and interpersonal skills.

Preferred Qualifications:

• Certifications such as GCTI, GCIA, GCIH, OSCP, or CISSP.
• Experience with threat modeling and risk assessment methodologies.
• Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments.
• Knowledge of regulatory and compliance frameworks (e.g., NIST, ISO 27001, GDPR)

Job Title: Threat Hunting and Intelligence Lead
Location: Bangalore
Department: MDR – TH/TI

 

Job Summary:

We are seeking a highly skilled and proactive Threat Hunting and Intelligence Lead to spearhead our proactive cybersecurity initiatives. This role is responsible for leading a team of threat hunters and intelligence analysts to detect, analyze, and respond to advanced cyber threats. The ideal candidate will have a strong background in threat intelligence, incident response, and security operations, with a passion for staying ahead of emerging threats. He/she will help design, build, and deliver in the strategic direction of KPMG's threat hunting and threat intelligence function, which supports a diverse portfolio of clients

Key Responsibilities:

• Lead the threat hunting and cyber threat intelligence (CTI) functions within the Security Operations Center (SOC), defining long-term strategy and ensuring scalability to meet client needs. 
• Develop and execute proactive, hypothesis-driven threat hunting strategies to detect and mitigate advanced threats across diverse environments.
• Oversee the daily operations of the threat intelligence team, ensuring timely collection, analysis, and dissemination of actionable intelligence to internal stakeholders and clients. 
• Conduct in-depth research on sophisticated threat actors, their evolving tactics, techniques, and procedures (TTPs), and motivations—leveraging advanced intelligence platforms and tools. 
• Analyze threat intelligence from internal and external sources to assess relevance and potential impact on client environments. 
• Collaborate with incident response, SOC, and vulnerability management teams to enhance detection, response, and remediation capabilities. 
• Build and maintain threat detection use cases, playbooks, and automation workflows to improve operational efficiency. 
• Conduct root cause analyses and post-incident reviews to continuously improve threat detection and response processes. 
• Develop and deliver high-quality intelligence reports, dashboards, and briefings tailored to client-specific threats and business risks. 
• Establish and enforce best practices across the intelligence lifecycle—from requirements gathering to analysis and dissemination—ensuring intelligence outputs are timely, accurate, and relevant.
• Stay abreast of emerging cyber threats, vulnerabilities, malware, and attack methodologies by monitoring threat feeds, industry reports, and security research. 
• Evaluate and integrate new intelligence tools and technologies, ensuring the team remains current with evolving capabilities and trends. 
• Serve as the primary point of contact for threat intelligence discussions with internal and external stakeholders, acting as a trusted advisor and aligning intelligence services with business objectives. 
• Mentor and develop junior analysts and threat hunters, fostering a culture of continuous learning and operational excellence.

Essential Qualifications:

• Bachelor's degree in computer science, Information Security, or a related field (or equivalent experience). 
• 7+ years of experience in cybersecurity, including at least 5 years in threat hunting or threat intelligence and 3+ years in a leadership or management role. 
• Deep understanding of threat actor tactics, techniques, and procedures (TTPs), including the MITRE ATT&CK framework and the cyber kill chain. 
• Proficiency with SIEM (e.g., Splunk, QRadar), EDR solutions, and threat intelligence platforms. 
• Hands-on experience with scripting languages such as Python or PowerShell for automation and data analysis. 
• Proven track record in building and scaling threat intelligence programs, ideally within a managed security services environment. 
• Strong grasp of the global cyber threat landscape and its implications across industries. 
• Ability to translate complex technical threats into business risks and effectively communicate with both technical and non-technical stakeholders. 
• Excellent communication, presentation, and interpersonal skills.

Preferred Qualifications:

• Certifications such as GCTI, GCIA, GCIH, OSCP, or CISSP.
• Experience with threat modeling and risk assessment methodologies.
• Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments.
• Knowledge of regulatory and compliance frameworks (e.g., NIST, ISO 27001, GDPR)

Job Title: Threat Hunting and Intelligence Lead
Location: Bangalore
Department: MDR – TH/TI

 

Job Summary:

We are seeking a highly skilled and proactive Threat Hunting and Intelligence Lead to spearhead our proactive cybersecurity initiatives. This role is responsible for leading a team of threat hunters and intelligence analysts to detect, analyze, and respond to advanced cyber threats. The ideal candidate will have a strong background in threat intelligence, incident response, and security operations, with a passion for staying ahead of emerging threats. He/she will help design, build, and deliver in the strategic direction of KPMG's threat hunting and threat intelligence function, which supports a diverse portfolio of clients

Key Responsibilities:

• Lead the threat hunting and cyber threat intelligence (CTI) functions within the Security Operations Center (SOC), defining long-term strategy and ensuring scalability to meet client needs. 
• Develop and execute proactive, hypothesis-driven threat hunting strategies to detect and mitigate advanced threats across diverse environments.
• Oversee the daily operations of the threat intelligence team, ensuring timely collection, analysis, and dissemination of actionable intelligence to internal stakeholders and clients. 
• Conduct in-depth research on sophisticated threat actors, their evolving tactics, techniques, and procedures (TTPs), and motivations—leveraging advanced intelligence platforms and tools. 
• Analyze threat intelligence from internal and external sources to assess relevance and potential impact on client environments. 
• Collaborate with incident response, SOC, and vulnerability management teams to enhance detection, response, and remediation capabilities. 
• Build and maintain threat detection use cases, playbooks, and automation workflows to improve operational efficiency. 
• Conduct root cause analyses and post-incident reviews to continuously improve threat detection and response processes. 
• Develop and deliver high-quality intelligence reports, dashboards, and briefings tailored to client-specific threats and business risks. 
• Establish and enforce best practices across the intelligence lifecycle—from requirements gathering to analysis and dissemination—ensuring intelligence outputs are timely, accurate, and relevant.
• Stay abreast of emerging cyber threats, vulnerabilities, malware, and attack methodologies by monitoring threat feeds, industry reports, and security research. 
• Evaluate and integrate new intelligence tools and technologies, ensuring the team remains current with evolving capabilities and trends. 
• Serve as the primary point of contact for threat intelligence discussions with internal and external stakeholders, acting as a trusted advisor and aligning intelligence services with business objectives. 
• Mentor and develop junior analysts and threat hunters, fostering a culture of continuous learning and operational excellence.

Essential Qualifications:

• Bachelor's degree in computer science, Information Security, or a related field (or equivalent experience). 
• 7+ years of experience in cybersecurity, including at least 5 years in threat hunting or threat intelligence and 3+ years in a leadership or management role. 
• Deep understanding of threat actor tactics, techniques, and procedures (TTPs), including the MITRE ATT&CK framework and the cyber kill chain. 
• Proficiency with SIEM (e.g., Splunk, QRadar), EDR solutions, and threat intelligence platforms. 
• Hands-on experience with scripting languages such as Python or PowerShell for automation and data analysis. 
• Proven track record in building and scaling threat intelligence programs, ideally within a managed security services environment. 
• Strong grasp of the global cyber threat landscape and its implications across industries. 
• Ability to translate complex technical threats into business risks and effectively communicate with both technical and non-technical stakeholders. 
• Excellent communication, presentation, and interpersonal skills.

Preferred Qualifications:

• Certifications such as GCTI, GCIA, GCIH, OSCP, or CISSP.
• Experience with threat modeling and risk assessment methodologies.
• Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments.
• Knowledge of regulatory and compliance frameworks (e.g., NIST, ISO 27001, GDPR)