Cyber Threat Hunter I/II/III/Sr

Northern Natural Gas-posted 3 months ago
Des Moines, IA
Warehousing and Storage
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The position involves proactively identifying cybersecurity incidents that may go undetected by other security tools. The individual will respond to real-time security incidents and support activities for response. Additionally, the role acts as a liaison between the threat intelligence teams and the analyst teams to coordinate on emerging threats to the BHE networks.

  • Hunt for existing threats or vulnerabilities already present in the networks.
  • Analyze and correlate large data sets to uncover threats and attack techniques.
  • Coordinate with threat intelligence analysts on emerging threats to the company or industry, seeking out potential issues in the environment.
  • Assist endpoint and network protection SMEs in the development of protective or detective queries in existing tool sets for near real-time detection.
  • Advise on tools, techniques, or policies to advance the posture and monitoring functions of the security operations center.
  • Provide timely and accurate cross-platform support in response to security threats.
  • Bachelor's degree in Computer Science, Information Technology, or related field; or equivalent work experience.
  • Direct experience performing threat hunting in an enterprise environment.
  • Two years of experience in a technical role within a Security Operations Center, Incident Response Team, or Threat Intelligence for the Cyber Threat I.
  • Four years of experience in a technical role within a Security Operations Center, Incident Response Team, or Threat Intelligence for the Cyber Threat II.
  • Six years of experience in a technical role within a Security Operations Center, Incident Response Team, or Threat Intelligence for the Cyber Threat III.
  • Eight years of experience in a technical role within a Security Operations Center, Incident Response Team, or Threat Intelligence for the Sr Cyber Threat.
  • At least one year of hands-on experience with a production security toolset.
  • Experience with an EDR/MDR/XDR, network tapping infrastructure, and security automation is preferred.
  • Knowledge of security principles is desired through achievement and active pursuit of advanced security certification including CISM or CISSP or equivalent.
  • Familiarity with at least one programming and scripting language such as PERL, Python, Ruby, C#, C++, Go, Rust, BASH, and Powershell.
  • Ability to construct and execute complex database queries using SQL, KQL, or eDSL.
  • General knowledge of information technology terms, equipment, systems, functions, and major vendors.
  • Effective interpersonal skills and customer relationship skills.
  • Effective analytical, problem-solving and decision-making skills.
  • Project management skills; ability to prioritize and handle multiple tasks and projects concurrently.
  • Experience with open source security tools such as Syslog-NG, SNORT, Cuckoo, etc.
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service