• Sr Analyst, Cyber Threat Hunting

    Job Locations US-TX-Irving
    Posted Date 3 weeks ago(6/6/2018 3:20 PM)
    ID
    2018-42684
    Category
    Information Systems
  • Overview

    This senior technical position investigates and responds to threats to SEI  and will perform research and analysis for indications of advanced threat actors existing on the network. Analyze available data sources, security tools, and threat trends and lead security monitoring and analysis techniques to identify attacks against the enterprise. Works with the Cyber Security Research and Development team to operationalize new and innovative techniques of discovering advanced threat actors.

     

     

     

    Responsibilities

    • This senior technical position will perform research and analysis searching for indications of advanced threat actors existing on the network.
    • Analyze available data sources, security tools, and threat trends and lead security monitoring and analysis techniques to identify attacks against the enterprise.
    • Ability to quickly identify suspicious anomalies thru analysis of patterns in security logs.
    • Formulate and lead threat hunting missions; analyze log data from all network devices and hosts for anomalous events not covered by existing use cases and/or tools.
    • Develop custom detections for network, host, and SIEM toolsets based on outcome of threat hunting missions and input from threat intelligence team.
    • Assist Incident Response personnel in containment and remediation activities Review reports submitted to SEI by third party partners and provide accuracy assessments to Senior leadership.

     

     

     

    Qualifications

    Education:

    • Masters CISSP, CEH

    Experience:

    • 6 years, Threat Detection Operations.
    • Ability to develop custom detections for network, host, and SIEM toolsets.
    • Ability to decipher packet captures for signs of malicious activity.
    • Expert knowledge of tuning alerts to reduce false positives and network noise.
    • Strong communications skills required to develop hardening guidelines and certification checklists.
    • Advanced knowledge of Powershell, Python, Bash, and others.

    Internal Posting Dates: 6/6 - 6/16

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed