Threat Hunter/ DFIR Analyst

Direct message the job poster from Ensign InfoSecurity

Join Us - Ensign InfoSecurity! | Conquer the Unknown | IHRP-CP

Responsibilities

• Perform continuous and mission-based Threat Hunting using available platforms such as but not limited to SIEM and EDR.
• Support and perform threat hunts as instructed by Threat Hunting team
• Identify and propose possible threat hunting mission based on threat landscape
• Build hunt hypothesis, execute and analyse results, and support the entire threat hunt cycle till closure of the finding.
• Create and develop rules from the hunt hypotheses suitable for detection
• Develop and present threat hunting report and slides on a monthly basis

Qualifications

• Professional certifications such as GMON, GCTD, GCFA, GNFA, GCFR, GCTI, GCIA, OSCP or other relevant certifications will be required
• 2 years or more of experience as threat hunter or ...