Cybersecurity Threat Hunt - Lead

About The Position

Requirements

• Minimum 8 years in an Incident Response role
• Minimum of 4 years in a Threat Hunting Lead role
• Bachelor's degree in Information Systems or Computer Science
• Minimum of 5 years of experience implementing or operating Security Tools (SEIM, DLP, IPS, Anti Malware, Firewalls)

Nice To Haves

• Experience with Splunk or similar solutions in an enterprise-wide deployment
• Experience in building Threat Hunting Programs
• Experience with Python, Java, or PowerShell
• Strong organizational skills
• Excellent communication and customer service skills
• Ability to develop strong partnerships

Responsibilities

• Perform hunts in the SIEM and security tools for data artifacts to determine gaps in detections and response
• Conduct advanced malware analysis to extract IOCs and behaviors
• Collaborate with the Cyber Threat Intelligence team on consuming and producing verified IOCs
• Work with the Red Team on developing and testing threat hunting and detection methodologies
• Make recommendations for log and data source tuning and improvements
• Map Threat Hunts towards MITRE TTPs
• Develop dashboards, reports, and detections to automate repeatable threat hunting activities
• Stay updated with information security news, techniques, and trends
• Validate engagement findings using open-source and proprietary intelligence repositories
• Document and manage hypothesis and hunts using SOAR or SharePoint
• Escalate findings such as suspected incidents, exploitation opportunities, and tuning

Benefits

• Hybrid workplace
• Equal opportunity employer
• Tobacco-Free Hiring Practice