Senior Technical Analyst Cyber Threat Hunting Analyst
Share
Job Location:
Monthly Salary:
Posted on:
30+ days ago
Vacancies:
1 Vacancy
Job Summary
Location: IN - Bangalore 24/7 IN - Bangalore Job-ID: 214593 Contract type: Standard Business Unit: IT Consulting
Life on the team
Placed within our Security Operations function our Cyber Threat Operations Team play an essential role in protecting Computacenter from the latest threats and threat actors. The Cyber Threat Operations Team work to ensure we have a forward-looking mentality to identify emerging threats and trends. Our team brings together a diverse set of specialist skills including Threat Intelligence Threat Hunting Malware Analysis Digital Forensics Incident Response and Threat Modelling. At our core we are driven by a mission to investigate collate and locate: to unearth new threats collate all available information about them and then seek them out and respond appropriately. The aim of the Cyber Threat Operations Team is to ensure the wider security division is one step ahead of security threats by applying technical knowledge and understanding of global events to produce relevant actionable intelligence. The Cyber Threat Operations Team understand how threats feed into business risks. We lead on collecting evaluating and analyzing all sources of information to produce finished Threat Intelligence to help inform Computacenter and minimize the risk of harm.
We are now looking for an experienced Threat Hunt Analyst to join our this role you will be responsible for the prioritization gathering and analyzing malware samples associated to emerging threats and then disseminating your findings to relevant teams for appropriate action.
What youll do
- Support threat hunting team in day-to-day checklist(s) including log review alert analysis and investigation enrichment.
- Support the improvement and development of new threat hunt queries based on observed and measured cyber threat activity.
- Remain current on threats exposures and mitigations (APT zero days Methods & tactics) that could impact Computacenter; Deliver specialist investigation and analysis on cyber security incidents to support the Computacenter Cyber Security Incident Response Team (CSIRT)
- Maintenance of tooling to ensure the smooth running CTH services
- Create hypotheses generate structured plans and conduct threat hunts for given threats.
- Create and maintain standard library of repeatable hunting queries to search for common attack techniques
- Generate reports on discovered threats
- Documentation of processes and services delivered by the team.
What youll need
- Experienced in Information and Cyber Security including a SOC.
- Experienced in common open and closed source intelligence tools and technologies.
- Experienced in adversary tactics and techniques frameworks such as Mitre ATT&CK and Killchain.
- Experienced in common SOC SIEM technology applications such as MS Sentinel.
- Experienced in KQL with ability to formulate advanced queries.
- Experienced in investigating security breaches and security incident management.
- Knowledge of specialist security technologies including CIS Benchmarks Tenable etc.
- Knowledge of specialist threat information sharing including STIX TAXII CISSP etc.
- Knowledge of network topologies and protocols. Knowledge of security risk management incident response and crisis management.
- Communicates in a clear straightforward way (written and verbally)
- Ability to present complex technical details in a simple business context
- Excellent written and verbal English
- Take responsibility for own actions and ability to perform in a structured manner and to strict deadline.
About us
We are a leading independent technology and services provider trusted by large corporate and public sector organisations. We are a responsible business that believes in winning together for our people and our planet. We help our customers to source transform and manage their technology infrastructure to deliver digital transformation enabling people and their business.
Our business may be about technology but first of all its about people
With over 20000 people across 22 countries we are proud of our inclusive culture - where everyone can thrive feel valued and truly belong.
As an equal opportunities employer were committed to ensuring fair and equal access to opportunities for all. Your application will be considered on its merits regardless of your age disability ethnicity gender identity or any other characteristics protected by law. What matters most to us is that you share our vision and values and bring the experience and skills were looking for.
We are proud to be a Disability Confident Employer. We welcome applications from disabled people and accept applications in alternative formats. We also guarantee to interview applicants who have a disability.
If you share our values and want to make a meaningful impact in a supportive forward-thinking environment - wed love to hear from you!
Required Experience:
Senior IC
Key Skills
- Intelligence Targeting
- SQL
- Agile
- Business Analysis
- Telephony
- Computer Forensics
- Requirements Gathering
- Business requirements
- Cordova
- SDLC
- Oracle
- Wiki Systems
About Company
Unsere Kunden sind einige der größten Organisationen der Welt. Wir arbeiten hart daran, sie kennen zu lernen, ihre Bedürfnisse zu verstehen und sie in den Mittelpunkt unseres Handelns zu stellen.
