Threat Hunter
Job Description:
Position Overview
Do the phrases “mining for gold” or “thrill of the chase” pique your interest? If so, you could be the cybersecurity professional we need to search for threats and protect our clients against sensitive data theft.
As Threat Hunter, you will work closely with our senior threat researcher and partner with clients to investigate the threat leads on their system. You will help to extract data and remove the noise in order to pinpoint the internal and external threats. Our client base is global and in nearly every industry.
What you will do:
Work with behavioral analytics threat hunting technologies to analyze and identify threat patterns or indicators that can be used for threat detection on our platform.
Follow the emerging threats and attack techniques by reading detailed analytics anomalies.
Identify, analyze and define the attack path of advanced intrusions.
Produce reports that can form the basis for new behavioural models.
Maintain situational awareness of cyber activity by reviewing new anomalies and tracking attack campaigns through their attack cycle.
Track threat actors, their tactics, techniques, and procedures (TTPs), and their associated Indicators of Compromise (IOCs) through the analytics.
Follow the analytic results leveraging additional search techniques including Kibana and Athena.
Your range of experience and skills include:
Understanding the cybersecurity landscapeDeep knowledge of current and past malware methods, attack methodologies, and TTPs (Tactics, Techniques, Procedures)
Strong understanding of current attacker tradecraft
Define client relationships and understand the critical assets in their environment to develop additional detection patterns.
Experience with common industry EDR/SOAR/Anomaly detection solutions (FireEye, Carbon Black, Endgame, Falcon, etc.)
Experience with the incident response process, including detecting advanced adversaries, log analysis using SIEM, and malware triage (Optional)
Knowledge and experience working with the Cyber Kill Chain Model, MITER ATT&CK Matrix. (Optional)
Knowledge of Operating Systems and Network ProtocolsAn extensive knowledge of Operating System Internals (Windows, *nix, MacOS)
Strong understanding of network security concepts and network protocols, netflow and web proxy.
Scripting knowledge (PowerShell, Python, etc.)
Technical Writing and Reporting SkillsExperience preparing security reports and different technical documents
Who you are:
You are persistent and inquisitive. You have to understand why things are happening the way they are.
You are determined to understand cyber attack techniques at a very detailed level.
You are a self-starter who is able to work with minimal management, however have strong collaboration and interpersonal skills to work together with several other professionals from other information security fields.
You’re a creative thinker who wants to answer the question, “Why?”
Your workstation is a pyramid of monitors that you can't take your eyes off of at the risk of missing something juicy.
You have a desire to learn new technologies.
Your sense of humor, passion and enthusiasm shines through in everything you do.
Job:
Information Technology
Micro Focus is proud to be an Equal Opportunity Employer. Prospective employees will receive consideration without discrimination because of race, colour, religion, creed, gender, national origin, age, disability, marital or veteran status, sexual orientation, genetic information, citizenship or any other legally protected status
