Project Role : Security Delivery Lead
Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets).
Must have skills : Security Threat Hunting
Good to have skills : NA
Minimum 7.5 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary: As a Security Delivery Lead, the Threat Hunter (Hypothesis-Based Hunts) is responsible for proactively identifying unknown, stealthy, or emerging threats by developing and testing hypotheses based on adversary behaviors, intelligence, and environmental insights. This role focuses on uncovering anomalies, discovering novel attack patterns, and enhancing detection capabilities beyond traditional IOC-based methods. Roles & Responsibilities: - Formulate threat hunt hypotheses based on adversary TTPs, MITRE ATT&CK mapping, threat intel, and environmental observations. - Conduct environment baselining to understand normal asset, user, and network behavior. - Prioritize hunts based on risk, asset criticality, threat actor activity, and detection gaps. - Create structured hunt plans outlining data requirements, queries, tools, and expected outcomes. - Perform complex, behavior-based hunts across endpoint, network, cloud, and identity telemetry. - Identify anomalies such as privilege escalation, lateral movement, persistence, DGA activity, C2 patterns, and data exfiltration. - Use SIEM, EDR, NDR, SOAR, identity security tools, and analytics platforms to test hypotheses. - Iterate and refine hunts to uncover stealthy or previously unknown attacker techniques. - Translate hunt findings into new detection rules, correlation logic, and behavioral analytics. - Validate existing SOC detections and identify coverage gaps. - Work with detection engineering teams to operationalize new alerts, dashboards, and parsers. - Leverage strategic and operational threat intel to anticipate possible attack paths. - Model adversary behavior using frameworks like MITRE ATT&CK, D3FEND, Cyber Kill Chain, and Diamond Model. - Maintain awareness of evolving threat actor capabilities, malware, and tradecraft. - Partner with SOC, IR, red team, and vulnerability teams to correlate findings and recommend mitigations. - Assist IR teams during major incidents by providing behavioral analysis and hunt pivot points. - Participate in purple team exercises to validate hypothesis-based detections. - Document hunt methodologies, hypotheses, execution steps, findings, and recommendations. - Present insights and threat hunt outcomes to stakeholders including SOC leadership. - Build and maintain reusable hunt playbooks for future cycles. - Drive continuous improvements in visibility, logging, analytics, and detection posture. Professional & Technical Skills: - Must To Have Skills: MITRE ATT&CK, Threat modeling frameworks, Windows, Linux, AD, cloud attack techniques, Network traffic analysis and anomaly detection - Strong analytical skills to assess security threats and vulnerabilities. - Strong experience with SIEM platforms (Splunk, Sentinel, Chronicle, QRadar, etc.). - Deep understanding of endpoint and network telemetry (CrowdStrike, Defender ATP, NDR tools). - Ability to communicate complex security concepts to non-technical stakeholders. - Expertise in at least one scripting language (Python, PowerShell, Bash) for data analysis and automation. - Experience uncovering behavior-based anomalies without reliance on IOCs. - Strong analytical and critical thinking abilities. - Ability to create clear hypotheses and test them methodically. - Excellent communication and reporting skills to explain findings to both technical and non-technical audiences. - Curiosity-driven mindset with strong problem-solving orientation. Additional Information: - The candidate should have minimum 7.5 years of experience in Security Threat Hunting. - This position is based at our Bengaluru office. - A 15 years full time education is required. - Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field. - Preferred Certifications: GCTI, GCIH, GCIA, SANS Threat Hunting (SEC 599 / SEC 555)

15 years full time education

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.

Visit us at www.accenture.com 

Equal Employment Opportunity Statement

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, military veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.