NOMIOS POLAND SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ
10. 12. 2024
Informacje o stanowisku
technologies-expected :
Cybersecurity
SIEM
EDR
MITRE ATT&CK
CTI
technologies-optional :
AWS
Azure Cosmos DB
Google Cloud Platform
PowerShell
Bash
Python
about-project :
Are you passionate about diving deep into the cyber threat landscape to uncover and mitigate hidden dangers?
We are looking for a proactive and analytical Threat Hunter to join our team. As a Threat Hunter, you will play a critical role in identifying advanced threats, developing innovative detection strategies, and enhancing our clients security posture. This position offers an exciting opportunity to work on complex challenges and contribute to the cutting edge of cybersecurity.
responsibilities :
Proactive Threat Hunting: Identify, analyze, and mitigate advanced threats using SIEM, EDR, and other security tools.
Detection Development: Create and fine-tune detection rules to identify malicious activities and improve threat visibility.
Investigation & Analysis: Perform detailed investigations of anomalies and suspicious behaviors, correlating data from various sources to uncover attack patterns.
Incident Support: Collaborate with incident response teams to contain and remediate threats, providing detailed insights and recommendations.
Threat Intelligence Integration: Leverage CTI (Cyber Threat Intelligence) to enhance hunting efforts and detection mechanisms.
Continuous Improvement: Identify gaps in detection capabilities and recommend improvements to security processes and tools.
requirements-expected :
2+ years of experience in SOC operations, incident response, or threat hunting.
Proficiency with EDR and SIEM tools (e.g., CrowdStrike, SentinelOne, Splunk).
Strong knowledge of the MITRE ATT&CK framework and attacker TTPs (Techniques, Tactics, and Procedures).
Familiarity with malware analysis, digital forensics, or network security.
Expertise in scripting or automation (e.g., Python, PowerShell, or Bash) to enhance threat detection and hunting processes.
Understanding of operating system internals (Windows, Linux, macOS) and common networking protocols.
offered :
A dynamic environment where your expertise will directly contribute to detecting and mitigating cyber threats.
Opportunities to collaborate with a skilled team of cybersecurity professionals.
Access to cutting-edge tools, technologies, and threat intelligence.
Career growth paths, including advanced roles in CTI, incident response, or cybersecurity architecture.
Ongoing training and professional development opportunities.
Balance between professional and personal life — 30 days of Paid Time Off yearly.
Participation in industry conferences to stay up-to-date with the latest trends and innovations.
Competitive bonuses linked to individual and team performance.