Responsibilities:
Threat Detection and Analysis
- Proactively search for threats and indicators of compromise (IoCs) across networks, systems, and applications.
- Analyze security data, including logs and alerts, to identify patterns and anomalies indicative of malicious activity.
- Develop and implement threat-hunting techniques to detect sophisticated and emerging threats.
Incident Response
- Collaborate with the Incident Response team to investigate and respond to security incidents.
- Provide insights and recommendations to improve incident handling and response procedures.
- Document findings, report incidents, and assist in post-incident analysis and remediation plans.
Research and Development
- Stay current with the latest cybersecurity threats, vulnerabilities, and trends.
- Research new attack vectors, tactics, techniques, and procedures (TTPs).
- Develop and test new threat-hunting techniques and tools to strengthen security defenses.
Collaboration and Communication
- Work closely with SOC analysts, security engineers, and management to coordinate defense strategies.
- Prepare and present reports on threat-hunting activities, findings, and recommendations to stakeholders and executive leadership.
Continuous Improvement
- Contribute to the development and refinement of threat-hunting processes and procedures.
- Participate in ongoing training and professional development to enhance cybersecurity expertise.
