Job Summary
A cloud computing company is searching for a person to fill their position for a Remote Threat Hunter.
Candidates will be responsible for the following:
- Performing structured threat hunting following a systematic program
- Identifying any missing people/process/technology needed for a TTP detection
- Crafting behavioral TTPs detections from our log aggregations for our SIEM
Must meet the following requirements for consideration:
- 4+ years' experience in a relevant information security domain
- Understanding of tactics, techniques and procedures associated with malicious insider activity
- Ability to analyze various data sources, security tools, and threat trends
- Familiar with common knowledge works in the area such as Kill Chain, MITRE ATT&CK, or TaHiTI
- Experience with host and network forensics from a malware perspective
- Ability to perform an investigation based off ambiguous information without defined work instructions