Cyber Threat Hunter SE - RSA New York, NY, United States Bookmark Share Print 1186 4 36

Listing Description

RSA is actively recruiting for an intelligent, goal oriented, creative and energetic individual with a deep technical background to fill the role of Customer Facing Cyber Threat Hunter SE (Systems Engineer). The successful Incident SE has a deep understanding of threat intelligence, network and host-based forensics, SEIM solutions, and CIRC or ASOC operations. RSA Cyber Threat Hunter SEs have the unique ability to inspire confidence in others through their ability to communicate technology effectively to individuals with varying degrees of technical expertise. The successful candidate will find a team culture that expects initiative and responsibility from each individual, but is supported by a vibrant community of technical professionals.

This is not a desk job; instead this is a role that is dynamic and challenging. When you are not working with customers you will be educating other SEs to achieve a force multiplier effect, tinkering in the lab for your own development or attending conferences to expand your knowledge.

The Cyber Threat Hunter SE is primarily responsible for providing incident analysis and investigation support for both existing RSA customers and potential customers. The secondary role of the Cyber Threat Hunter SE is to provide assistance to and education for in territory RSA NetWitnes SEs on existing and new threats, threat actors’ TTPs and as well as defensive TTPs.

Requirements:

- Located in or near Philadelphia, NYC, Northern New Jersey, or New England < or willing to relocate

- 30% travel

- Bachelors or very compelling argument

- Two or more years’ experience in a hands-on technical role of network forensic analyst, malware analyst, incident responder or compelling argument

- Understanding of the tools and tactics used by advanced threat actors

- Must be well versed in: SIEM, AV, IDS/IPS, End Point Security, Web Proxy, AD

- Must be well versed in network architecture and security infrastructure placement

- Strong communication and presentation skills which will be used to communicate with all levels of an IT/Security organization from analyst to C level.

Nice to have:

- Working knowledge of one or more programming/scripting languages such as Python or Perl

- Reverse engineering Malware and other executables

- In depth knowledge of computer security forensics and security vulnerabilities

Benefits & Perks:

RSA, a division of Dell/EMC, receives all the benefits of having a large parent organization while maintaining a separate identity and culture. Available benefits can be found at www.mywellatdell.com.

Additional benefits include Security Conference attendance as well as a generous tuition reimbursement program that can be used for continued education such as getting a masters or SANS courses. Support the RSA SE teams by providing expert-level hunting skills using RSA’s and open source host-based and network-based forensics solutions.

Analyze various log, network, end point, malware, forensic, and open source information to validate security threats, recommend appropriate countermeasures, and assess the impact of incidents.

Research and document relevant threat intelligence during the investigation

Develop and deliver findings to customers, from IT staff to senior level management, while educating them on the benefits of the RSA product portfolio, as well as related research and industry knowledge

Maintain awareness of emerging threats