Informacje o stanowisku

Our client seeks a Senior Cyber Security Engineer – Threat Hunter with an analytical mind and a detailed understanding of cyber security methodologies. Threat Hunters are expected to have a meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure and deliver on tight deadlines.

As a threat hunter, you will be responsible for taking the "assume breach" model of security and transforming it into "active defenses". In short, your role is to find the adversary by assuming they are already in and trying to prove it. Your role includes thinking outside of the box and tuning defenses to give early warning of adversarial tactics happening inside security layers. Applicants must possess in-depth knowledge of vulnerability & risk remediation, threat intelligence, forensics and malware, and cyber industry controls; acts as a daily “threat hunter;” closely involved in developing, tuning and implementing threat detection, protections and SIEM.

Nothing in this job description restricts management’s right to assign or reassign duties at any time.

Responsibilities:

1. Detect & help tune tools to detect patterns/outliers within client environments that match tactics, techniques or procedures (TTPs) of known threat actors, malware or other unusual or suspicious behaviors.
2. Continuous threat hunts & analysis including staying up to date on emerging threats, industry issues and trends, and the global information security landscape.
3. Designs, implements and maintains all internal cybersecurity-related systems, including but not limited to vulnerability management, intrusion detection/prevention, and security information and event management.
4. Enforces security policy and assists in architecture collaboration throughout the organization to assess organizational information security risks and identify paths forward in mitigating or remediating those risks.
5. Works with leadership and internal auditors to create and update information security policies.
6. Participates in security assessments, purple team exercises and incident response.
7. Conduct dynamic and static malware analysis on samples obtained during incident handling or hunt operations in order to identify IOCs.
8. Establish & maintain client-specific cyber hunt & monitoring playbooks.

Minimum Qualifications:

1. High School Diploma required.
2. Minimum of 5 years of related work experience, to include:
1. Incident detection, response and forensics
2. Experience with EDR/XDR technologies
3. Languages: Polish – Strong & English – Strong (C1 - daily contact with team members from USA/Germany/China)

Preferred Qualifications:

1. Bachelor’s Degree in related field preferred.
2. SIEM/SOAR experience is a plus.
3. Ability to work under pressure in a fast-paced environment.
4. Strong attention to detail with an analytical mind and outstanding problem-solving skills.
5. Self-motivated and communicates well with both technical and non-technical audiences.
6. Passion for cybersecurity and strong interpersonal and collaborative skills, with the ability to work in a team environment.
7. Great awareness of cybersecurity trends and hacking techniques.
8. Advanced training on anomaly detection; tool-specific training for data aggregation, analysis, and threat intelligence.
9. Certifications are a plus:
1. Certified Information Systems Security Specialist (CISSP)
2. GIAC Certified Intrusion Analyst (GCIA)
3. GIAC Certified Network Forensic Analyst (GNFA)

Bydgoszcz - Oferty pracy w okolicznych lokalizacjach