Senior Technical Analyst - Cyber Threat Hunting Analyst

NOTE: Only looking Bangalore Localities

Notice period: Immediate to 30 days joiners

We are now looking for an experienced Threat Hunt Analyst to join our team. In this role you will be responsible for the prioritisation, gathering and analysing malware samples associated to emerging threats, and then disseminating your findings to relevant teams for appropriate action.

What youll do

• Support threat hunting team in day-to-day checklist(s), including log review, alert analysis, and investigation enrichment.
• Support the improvement and development of new threat hunt queries based on observed and measured cyber threat activity.
• Remain current on threats, exposures and mitigations (APT, Zero days, Methods & tactics) that could impact Computacenter; Deliver specialist investigation and analysis on cyber security incidents to support the Computacenter Cyber Security Incident Response Team (CSIRT)
• Maintenance of tooling to ensure the smooth running CTH services
• Create hypotheses, generate structured plan and conduct threat hunts for given threats.
• Create and maintain standard library of repeatable hunting queries to search for common attack techniques
• Generate reports on discovered threats
• Documentation of processes and services delivered by the team.

What you’ll need

• Experienced in Information and Cyber Security, including a SOC.
• Experienced in common open and closed source intelligence tools and technologies.
• Experienced in adversary tactics and techniques frameworks such as Mitre ATT&CK and Killchain.
• Experienced in common SOC SIEM technology applications such as MS Sentinel.
• Experienced in KQL, with ability to formulate advanced queries.
• Experienced in investigating security breaches and security incident management.
• Knowledge of specialist security technologies including CIS Benchmarks, Tenable etc.
• Knowledge of specialist threat information sharing including STIX, TAXII, CiSP etc.
• Knowledge of network topologies and protocols. Knowledge of security risk management, incident response and crisis management.
• Communicates in a clear straightforward way (written and verbally)
• Ability to present complex technical details in a simple business context
• Excellent written and verbal English
• Takes responsibility for own actions and ability to perform in a structured manner and to strict deadline