Skip to main content
Posted 04 July, 2026

Assistant Manager - Cyber Transformation

KPMG
Mumbai,Maharashtra,IN,400063 Full Time
Reference: 218_609639_INTG10047260

About KPMG in India

KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.

KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.

AM - Cyber Transformation

Equal employment opportunity information


KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.
BE/MBA
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field.
  • Minimum 2 years of experience in SOC / Security Operations.

Certifications (Preferred)

  • CompTIA Security+
  • Splunk Certifications (Core Certified User / Power User)
  • Any other cybersecurity certification is an advantage

Equal employment opportunity information:

KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

Role Summary

We are seeking a dedicated SOC Analyst with 5+ years of experience and hands-on expertise in Splunk for security monitoring and incident response. The role involves real-time analysis of security events, incident investigation, and proactive threat detection to safeguard the organization's IT environment.

  • Monitor and analyze security alerts and events using Splunk SIEM.
  • Perform incident triage, investigation, and escalation in line with SOC procedures.
  • Respond to security incidents such as phishing attacks, malware infections, unauthorized access, and suspicious activities.
  • Conduct log analysis across multiple systems including endpoints, servers, network devices, and cloud environments.
  • Develop and fine-tune Splunk searches, dashboards, alerts, and correlation rules.
  • Participate in threat hunting activities to proactively identify hidden threats.
  • Support the incident response lifecycle (Detection, Analysis, Containment, Eradication, Recovery).
  • Document incidents, findings, and remediation actions in detail.
  • Collaborate with internal teams (IT, Network, Security Engineering) for issue resolution.
  • Stay updated with the latest cybersecurity threats, vulnerabilities, and attack techniques.
  • Strong attention to detail and analytical mindset
  • Ability to work in a 24/7 shift environment (is required)
  • Good communication and documentation skills
  • Ability to handle high-pressure situations and prioritize tasks
  • Hands-on experience with Splunk (log analysis, dashboards, alerting, SPL queries).
  • Strong understanding of SOC operations and SIEM tools.
  • Knowledge of incident response processes and procedures.
  • Familiarity with: Network protocols (TCP/IP, DNS, HTTP/HTTPS), Firewalls, IDS/IPS, endpoint security tools
  • Basic understanding of cybersecurity frameworks and best practices.
  • Ability to analyze large volumes of logs and identify anomalies.
  • Strong analytical and problem-solving skills.
  • Experience with threat hunting techniques.
  • Knowledge of MITRE ATT&CK framework.
  • Exposure to EDR/XDR tools (e.g., Microsoft Defender, CrowdStrike).
  • Basic scripting knowledge (Python / PowerShell) is a plus.
  • Familiarity with SOAR tools and automation.

Sign up for Job Alerts