Threat Hunter

Threat Hunter

الوصف الوظيفي

Help uplifting the organization's security posture by:

• Continuously monitoring and documenting the digital footprint of the organization, identifying blind spots and security gaps.
• Contributing in the setup of solutions that improve the collection of security data across the organizational landscape.
• Helping in the evaluation of on-prem and cloud deployments, encompassing all digital assets for improvement in security posture.

Proactively seeking out potential cyber threats by:

• Monitoring threat intelligence for IOCs, new vulnerabilities, software weaknesses, and other attacker TTPs.
• Actively hunt for Indicators of Compromise (IOC) and APT Tactics, Techniques, and Procedures (TTP) in the network and in the host as necessary.
• Analyze network perimeter data, flow, packet filtering, proxy firewalls, and IPS/IDS to create and implement a concrete plan of action to harden the defensive posture.
• Create and document automated controls to raise alerts on re-appearance of an indicator.

Aid SOC by:

• Collaborating with the SOC Analysts to contain and investigate incidents.
• Conducting red team exercises to identify possible gaps in alert configurations and incident response tactics.

المهارات

• Experience with Threat Hunting techniques on both the endpoint and network data.
• Solid networking fundamentals and understanding of large enterprise architectures and operations.
• Understanding of common malware types and behaviors and common infection vectors.
• Strong understanding of common attack vectors and offensive tools and tactics.
• Ability to identify attacker Tactics, Techniques and procedures (TTPs).
• Experience with IoC lifecycle (development, organization, sharing, effective usage).
• Experience with statistical/quantitative analysis methods and tools.
• Ability to develop scripts using Python, PowerShell, Bash, etc. and proficiency with Regex.
• Familiarity with ELK platform and various raw log sources (e.g. netflow, pcap, dns, proxy etc.).
• Knowledge of Windows and Linux OS’ and command line.
• Strong documentation and communication skills.

تفاصيل الوظيفة

منطقة الوظيفة

دبي, الإمارات العربية المتحدة

قطاع الشركة

الأجهزة الطبية والصحية; خدمات تكنولوجيا المعلومات

طبيعة عمل الشركة

صاحب عمل (القطاع الخاص)

نوع التوظيف

دوام كامل

الراتب الشهري

غير محدد

عدد الوظائف الشاغرة

1

المرشح المفضل

عدد سنوات الخبرة

الحد الأدنى: 5

الشهادة

بكالوريوس/ دبلوم عالي

للتقدم على الوظيفة