Threat Management Consultant

Threat Management Consultant

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovative-led company with approximately 784,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities. Visit us at www.accenture.com.

Accenture Security

Join Accenture Security to pioneer security solutions that blend risk strategy, digital identity, cyber defense, application security and managed services. Using the coolest next-gen tech, you’ll have every chance to stay one step ahead of cybercrime and out-hack the hackers.

Accenture Security provides comprehensive security services – from security strategy development to business transformation, to managed security services – on demand and at a global scale to help mitigate risks and take full advantage of advanced technologies and proven risk management models. Our experienced team of global security professionals helps businesses understand their risks and build resilience from the inside out, giving them the confidence to focus on what matters most: innovation and business growth. 

Overview

The Threat Management Consultant provides advanced technical delivery and operational ownership for Threat Intelligence, Threat Detection & Response, SOAR automation, and Vulnerability Management platforms—primarily Anomali ThreatStream, Anomali Match, FortiSOAR, and Tenable Security Center (VA). This role ensures effective Solution Operation and Management, leads Incident and Problem Management, performs Root Cause Analysis (RCA), and drives service quality improvement and continuous value addition while supporting audits and maintaining strong service leadership.

Key Responsibilities

Threat Intelligence Operations (Anomali ThreatStream)

• Manage and optimize Threat Intelligence Feeds Collection and ingestion pipelines via Anomali ThreatStream.

• Configure, validate, and maintain TI feed connectors, enrichment rules, and normalization mappings.

• Ensure high-quality threat intel lifecycle management including curation, deduplication, scoring, and dissemination.

Threat Detection & Response (Anomali Match / Darktrace)

• Operate and tune Anomali Match use-cases for threat detection, correlation, and response workflows.

• Support security monitoring, triage, and investigation activities; improve detection logic based on trends and incidents.

• Leverage Darktrace operational experience to enhance detection fidelity and response outcomes.

SOAR Automation (FortiSOAR)

• Own day-to-day operations of the SOAR solution (FortiSOAR) including playbooks, workflows, integrations, and automation governance.

• Build and maintain orchestration workflows for alert triage, enrichment, containment, and remediation.

• Integrate SOAR with security tools and data sources (SIEM/EDR/Email/Sandbox/Threat Intel/Vulnerability platforms) to reduce MTTR.

Vulnerability Management (Tenable Security Center / VA)

• Operate and enhance Vulnerability Assessment processes using Tenable Security Center (or equivalent Tenable tools).

• Support asset coverage, scan schedules, credentialed scanning, remediation validation, and risk-based prioritization.

• Produce vulnerability reporting dashboards and metrics aligned to SLA/KPI requirements.

Incident, Problem Management & RCA

• Lead Incident and Problem Management, ensuring prompt resolution and effective stakeholder communication.

• Conduct Root Cause Analysis (RCA), document findings, and implement corrective and preventive actions.

• Drive continual reduction of recurring incidents through process and automation improvements.

Service Operations, Health Checks & Upgrades

• Perform platform health checks, capacity monitoring, and performance optimization.

• Plan and execute patching and upgrade activities (including regression validation and rollback planning).

• Maintain service documentation (runbooks, SOPs, playbooks) and ensure operational readiness.

Quality, Compliance & Audit Support

• Support internal/external audits by maintaining evidence, logs, change records, and configuration baselines.

• Ensure adherence to operational governance, change management, and security standards.

• Drive Service Quality Improvement initiatives and deliver continuous value addition through measurable enhancements.