Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

AstraZeneca

Compare

4.1

based on 839 Reviews

Video summary

119 AstraZeneca Jobs

Lead Consultant-Threat Detection Engineer

AstraZeneca India Pvt. Ltd

4.1

based on 839 Reviews

3-6 years

Chennai

1 vacancy

Lead Consultant-Threat Detection Engineer

AstraZeneca

posted 1mon ago

Job Role Insights

Flexible timing

Key skills for the job

Automation Testing Recruitment Linux Administration Microsoft Power BI Windows System Administration Information Security

+ 4 more

Job Description

This role requires a keen eye for detail, a thorough understanding of cybersecurity principles, and the ability to stay ahead of evolving threats. By employing advanced tools and techniques, you will play a pivotal role in safeguarding the organizations assets and ensuring a secure digital environment.

Accountabilities:

Design and implement threat detection mechanisms across cloud, on-premises, and third-party collaboration platforms to identify suspicious activities and potential threats.
Develop, test, and deploy high fidelity signature and anomaly-based detections.
Partner with engineering teams to build and maintain pipelines for collecting and processing relevant security telemetry.
Research emerging threat vectors and align detection and response capabilities with the evolving threat landscape.
Continuously refine detection rules and address systemic issues by collaborating with engineering teams.
Automate detection and response workflows, including playbooks and processes.
Facilitate log data onboarding into the SIEM.
Correlate and analyze data from diverse sources to uncover threats.
Enhance detection workflows with automation and enriched alerts.
Use expertise across multiple security domains, with a focus on two or more areas such as detection engineering, digital forensics, incident response, threat hunting, threat intelligence, or malware analysis.
Prepare reports and metrics related to threat detection efficacy and coverage.

Essential Skills/Experience

3+ years in Security Incident Response and Detection Engineering.
Degree in Computer Science, Information Security, Cybersecurity, or equivalent experience.
Eager to learn new technologies and methodologies to counter evolving threats.
Strong English communication and interpersonal skills to collaborate with multi-functional teams and explain technical concepts to non-technical individuals.
Experience creating detection rules using SPL, KQL, or Tanium signals, including tuning and correlation.
Strong knowledge of MITRE ATT&CK and adversary tactics, techniques, and procedures.
Hands-on experience with EDR tools such as Microsoft Defender for Endpoint, Tanium, and Trend Micro.
Ability to assess diverse data sources to develop relevant and impactful detections.
Strong understanding of false positive vs. true positive alerts.
In-depth knowledge of anti-malware, EDR, firewalls, proxies, IDS/IPS, Windows/Linux OS, Active Directory, and cloud environments.

Desirable Skills/Experience

Experience with SIEM and SOAR platforms (e.g., Splunk).
Proficiency in programming and scripting languages, including expertise in using Regular Expressions (REGEX).
Previous experience working with the Cyber Threat Intelligence (CTI) team to develop threat detections through collaboration.

Employment Type: Full Time, Permanent

Read full job description

Prepare for Lead Consultant roles with real interview advice

What people at AstraZeneca are saying

3.0

Rating based on 3 Lead Consultant reviews

Anonymous · Product Management in Chennai

Likes

Opportunity to Learn and Develop as plenty of Subscriptions made available by the Organization for Employees to Grow in their Skills. Adequate amount of Facilities & Campus support.

Salary - Good

+1 more

Dislikes

Very poor in successions plan , poor career progression & mentality not a safe environment to work with. Frequent of layoffs & team shuffling, myself frequently impacted as many others who still in the organization, no clear career & personal growth. Excessive micro management even to those who are more than 15+ years of Experience. Speak up culture not in practice here.