Threat Management Consultant

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovative-led company with approximately 784,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities. Visit us at www.accenture.com .

Accenture Security

Join Accenture Security to pioneer security solutions that blend risk strategy, digital identity, cyber defense, application security and managed services. Using the coolest next-gen tech, you’ll have every chance to stay one step ahead of cybercrime and out-hack the hackers.

Accenture Security provides comprehensive security services – from security strategy development to business transformation, to managed security services – on demand and at a global scale to help mitigate risks and take full advantage of advanced technologies and proven risk management models. Our experienced team of global security professionals helps businesses understand their risks and build resilience from the inside out, giving them the confidence to focus on what matters most: innovation and business growth.

Overview

The Threat Management Consultant provides advanced technical delivery and operational ownership for Threat Intelligence, Threat Detection & Response, SOAR automation, and Vulnerability Management platforms—primarily Anomali ThreatStream, Anomali Match, FortiSOAR, and Tenable Security Center (VA). This role ensures effective Solution Operation and Management, leads Incident and Problem Management, performs Root Cause Analysis (RCA), and drives service quality improvement and continuous value addition while supporting audits and maintaining strong service leadership.

Key Responsibilities

Threat Intelligence Operations (Anomali ThreatStream)

Manage and optimize Threat Intelligence Feeds Collection and ingestion pipelines via Anomali ThreatStream.

Configure, validate, and maintain TI feed connectors, enrichment rules, and normalization mappings.

Ensure high-quality threat intel lifecycle management including curation, deduplication, scoring, and dissemination.

Threat Detection & Response (Anomali Match / Darktrace)

Operate and tune Anomali Match use-cases for threat detection, correlation, and response workflows.

Support security monitoring, triage, and investigation activities; improve detection logic based on trends and incidents.

Leverage Darktrace operational experience to enhance detection fidelity and response outcomes.

SOAR Automation (FortiSOAR)

Own day-to-day operations of the SOAR solution (FortiSOAR) including playbooks, workflows, integrations, and automation governance.

Build and maintain orchestration workflows for alert triage, enrichment, containment, and remediation.

Integrate SOAR with security tools and data sources (SIEM/EDR/Email/Sandbox/Threat Intel/Vulnerability platforms) to reduce MTTR.

Vulnerability Management (Tenable Security Center / VA)

Operate and enhance Vulnerability Assessment processes using Tenable Security Center (or equivalent Tenable tools).

Support asset coverage, scan schedules, credentialed scanning, remediation validation, and risk-based prioritization.

Produce vulnerability reporting dashboards and metrics aligned to SLA/KPI requirements.

Incident, Problem Management & RCA

Lead Incident and Problem Management, ensuring prompt resolution and effective stakeholder communication.

Conduct Root Cause Analysis (RCA), document findings, and implement corrective and preventive actions.

Drive continual reduction of recurring incidents through process and automation improvements.

Service Operations, Health Checks & Upgrades

Perform platform health checks, capacity monitoring, and performance optimization.

Plan and execute patching and upgrade activities (including regression validation and rollback planning).

Maintain service documentation (runbooks, SOPs, playbooks) and ensure operational readiness.

Quality, Compliance & Audit Support

Support internal/external audits by maintaining evidence, logs, change records, and configuration baselines.

Ensure adherence to operational governance, change management, and security standards.

Drive Service Quality Improvement initiatives and deliver continuous value addition through measurable enhancements.

Required Skills & Experience

5–7 years of hands-on experience in Security Operations / Threat Management / SOC Engineering / Incident Response.

Strong operational experience with:

Anomali ThreatStream (Threat Intelligence Feeds Collector / TI platform operations)

Anomali Match (Threat Detection and Response)

FortiSOAR (SOAR solution operations, playbooks, orchestration)

Tenable Security Center (Vulnerability Management / VA operations)

Darktrace (Operational experience)

Proven expertise in:

Incident & Problem Management, RCA, SLA/KPI tracking

Threat intel ingestion/orchestration workflows and automation

Security tooling integration, APIs, connectors, and workflow automation concepts

Service operations best practices (ITIL-aligned preferred)

Preferred / Nice-to-Have

Experience with attack simulation / purple teaming activities (e.g., BAS tools, MITRE ATT&CK mapping, simulated attack campaigns).

Exposure to SIEM/EDR ecosystems and integrating them into SOAR workflows.

Certifications (any of the following are a plus): ITIL, GCIH/GCIA, Security+, CISSP, vendor-specific certifications (Fortinet/Tenable/Anomali).

Why join us?

We offer a transparent, fast paced career progression, with a focus on your strengths and continuous coaching from senior colleagues

You will benefit from working alongside Accenture experts who are solving some of the biggest industry challenges with innovative thinking and pioneering tools

Flexible work arrangements and a range of benefits including competitive rewards

You will have access to state-of-the-art technology that will give you the opportunity to deepen your existing skills even as you help create the latest business trends

You will also have opportunities to make a difference to the communities in which we work and live

Next Steps

If this sounds like the ideal role, career and company for you, click below to apply.

To learn more about life @AccentureMiddleEast, follow us on social media and keep up with our latest news.

Accenture Middle East: LinkedIn, Instagram, Facebook, Twitter, YouTube