Threat Hunter/ DFIR Analyst

Responsibilities:

Perform continuous and mission-based Threat Hunting using available platforms such as but not limited to SIEM and EDR.

Support and perform threat hunts as instructed by Threat Hunting team

Identify and propose possible threat hunting mission based on threat landscape

Build hunt hypothesis, execute and analyse results, and support the entire threat hunt cycle till closure of the finding.

Create and develop rules from the hunt hypotheses suitable for detection

Develop and present threat hunting report and slides on a monthly basis

Develop and present threat hunting report and slides on a monthly basis

Requirements

Work full time;

Professional certifications such as GMON, GCTD, GCFA, GNFA, GCFR, GCTI, GCIA, OSCP or other relevant certifications will be required;

2 years or more of experience as threat hunter or related discipline will be required;

Operational experience performing threat hunting using the EDR, NDR and SIEM;

• Must pass the L3 technical assessment for Threat Hunting and interview conducted by a joint panel