Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Jobs

Interviews

Home
>
Jobs in Mumbai
>
Deloitte Consulting
>
Cyber-D&R-VAPT-Consultant

Cyber-D&R-VAPT-Consultant

Deloitte Consulting

3 - 5 years

11 - 15 Lacs

Mumbai

Posted:4 days ago| Platform:

Apply

Skills Required

RED remediation endpoint security Simulation Bfsi Analytical ISO 27001 HTML Physical security Stakeholder management

Work Mode

Work from Office

Job Type

Full Time

Job Description

Jul 18, 2025

Location: Mumbai

Designation: Consultant

Entity: Deloitte Touche Tohmatsu India LLP

Your potential, unleashed.

India s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond.

At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters.

The team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks

Job Summary:

We are seeking an experienced

Red Team Specialist

with a strong background in offensive security and hands-on experience in conducting Red Team engagements across various vectors. The ideal candidate will be responsible for simulating sophisticated cyber-attacks to test and enhance our clients detection and response capabilities, especially within the BFSI sector.

Key Responsibilities:

Plan and execute
Red Team engagements
simulating realistic threat actor scenarios (external, internal, and physical).
Conduct
assumed breach assessments
,
initial access simulations
,
lateral movement
, and
exfiltration exercises
.
Leverage
MITRE ATT&CK framework
to design threat scenarios and map findings.
Exploit misconfigurations and vulnerabilities in
Active Directory
, cloud environments, and enterprise infrastructure.
Use and integrate
CART/BAS tools
like Cymulate, Pycus, or similar platforms to automate and validate security posture.
Work with Blue Teams to
measure detection, prevention, and response capabilities
post-engagement.
Develop comprehensive reports with actionable remediation recommendations.
Conduct threat emulation based on industry-specific APT groups relevant to the BFSI sector.
Stay updated on emerging threats, attack techniques, and countermeasures.
Support internal and client-facing
security awareness
,
purple teaming
, and
tabletop exercises
.

Required Skills & Experience:

Minimum 5 years of hands-on experience in
offensive security / red teaming
roles.
Proficient in
TTPs for Red Team operations
, including phishing, C2 infrastructure, evasion techniques, privilege escalation, and data exfiltration.
In-depth understanding of
Windows internals
,
Active Directory attacks
(Kerberoasting, Pass-the-Hash/Ticket, ACL abuse, DCShadow, etc.).
Solid understanding of
network protocols
,
cloud platforms
, and
endpoint security bypass techniques
.
Familiarity with
attack simulation tools
, custom scripting, and open-source frameworks (Cobalt Strike, Metasploit, Empire, Covenant, etc.).
Experience in
physical security assessments
, badge cloning, RFID/NFC exploitation, and social engineering (preferred).
Strong knowledge of
MITRE ATT&CK
,
NIST
, and equivalent frameworks.
Ability to document findings, map them to risk frameworks, and present to both technical and executive stakeholders.

Preferred Qualifications:

OSCP, CRTP, or similar offensive security certifications.
Prior experience in
BFSI sector engagements
.
Understanding of
compliance and regulatory requirements
in financial institutions (e.g., RBI, SEBI, ISO 27001).

Additional Expectations:

Excellent analytical and problem-solving skills.
Strong communication skills for stakeholder management and post-engagement debriefs.
Ability to work in high-pressure environments and coordinate with cross-functional teams.

Experience:

3 to 5 Years

Location:

Mumbai (Full-Time | Work From Office)

Certifications:

OSCP, CRTP, or equivalent

More Jobs at Deloitte Consulting

Senior Consultant

Pune, Chennai, Bengaluru

5.0 - 10.0 yrs

INR 8 - 18 Lacs

Netsuite Functional Consultant

Hyderabad, Bengaluru, Delhi / NCR

3.0 - 9.0 yrs

Salary: Not disclosed

Consultant/Senior Consultant || MS Dynamics and Power Platform

Pune, Bengaluru, Mumbai (All Areas)

3.0 - 8.0 yrs

INR 9 - 19 Lacs

Senior Consultant

Bengaluru

6.0 - 9.0 yrs

INR 16 - 22 Lacs

Oracle CPQ- Consultant

Hyderabad, Bengaluru, Delhi / NCR

3.0 - 8.0 yrs

INR 18 - 27 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now

Deloitte Consulting

Before You Leave... Find Your Perfect Job!

Login to

Please Verify Your Phone or Email

Confirm Action

Contact Us

Search

Profile

Upskill and Grow with AI

Personal Settings

Personal Settings

Cyber-D&R-VAPT-Consultant

Experience & Salary

Skills Required

Work Mode

Job Type

Job Description

Your potential, unleashed.

The team

Job Summary:

Red Team Specialist

Key Responsibilities:

Red Team engagements

assumed breach assessments

initial access simulations

lateral movement

exfiltration exercises

MITRE ATT&CK framework

Active Directory

CART/BAS tools

measure detection, prevention, and response capabilities

security awareness

purple teaming

tabletop exercises

Required Skills & Experience:

offensive security / red teaming

TTPs for Red Team operations

Windows internals

Active Directory attacks

network protocols

cloud platforms

endpoint security bypass techniques

attack simulation tools

physical security assessments

MITRE ATT&CK

NIST