Analyst - Threat Hunting

About KPMG in India

KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada. 

KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.

• Conduct proactive threat hunting across networks, endpoints, and cloud environments to detect malicious activity.
• Develop and execute hypotheses-driven hunting techniques using logs and telemetry data.
• Identify Indicators of Compromise (IOCs) and Indicators of Attack (IOAs).
• Perform deep-dive investigations on anomalies and alerts from SIEM/EDR tools.
• Document findings and recommend remediation actions.
• Collect, analyze, and operationalize threat intelligence from internal and external sources.
• Monitor emerging threats, vulnerabilities, and attacker tactics (MITRE ATT&CK framework).
• Correlate intelligence with internal events to identify potential risks.
• Produce actionable intelligence reports for security teams and stakeholders.
• Maintain and update threat intelligence feeds and enrichment processes.
• Work with tools such as SIEM (Splunk, QRadar, Sentinel), EDR (CrowdStrike, Defender, Carbon Black).
• Analyze logs from firewalls, IDS/IPS, cloud platforms, and network devices.
• Automate threat detection using scripts or security orchestration tools (SOAR).
• Assist in incident investigation, containment, and root cause analysis.
• Provide threat context during security incidents.
• Improve detection use cases based on past incidents.

• 2+ years of experience in Cybersecurity, Threat Hunting, or Threat Intelligence.
• Strong understanding of:
  • Network protocols (TCP/IP, DNS, HTTP)
  • Operating Systems (Windows/Linux internals)
  • Cyber kill chain & MITRE ATT&CK framework
• Experience with SIEM and endpoint security tools.
• Knowledge of malware behavior, attack techniques, and forensic basics.
• Familiarity with threat intelligence platforms (TIPs).

Equal employment opportunity information 

KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.