Listing Description
This role will play a key part in developing and utilizing GITP’s risk-based scoring capability
Collaborate with UEBA technical support and cybersecurity engineers to best configure UEBA tools in order to map the company based on access and behavior
Support all GITP analytic and interpretive cybersecurity intelligence efforts in order to identify, monitor or remediate Tactics, Techniques, and Procedures used by potential or actual insider threat
Utilize tools and processes for sharing intelligence information and supporting GITP investigations
Provide actionable insights, guidance and subject matter expertise to the GITP UEBA Lead and GITP Director
Utilize cybersecurity intelligence to improve hunt and lead generation efforts through threat modeling
Participate in proactive hunting exercises, retrospective searching for known indicators of malicious activity
Coordinate with Data Loss Prevention, security operations and incident response staff to tune and improve detection capabilities or to aid in investigations or respond to incidentsBS or BA degree preferably in computer or security related field or any combination of equivalent education and experience
Previous experience in a SOC environment
Excellent technical capabilities including an understanding of enterprise security network architecture, user and entity behavior analytics and other risk-based security operations
An analytical mindset coupled with a proven ability to examine and utilize raw data and create refined timely intelligence relevant to Insider Threat operations
Willingness to acquire in-depth knowledge of network and host security technologies and products
Strong written and verbal communication skills
Passionate about innovation and enjoys the challenges of creating something new
Stays current with evolving technologies via formal training and self-directed education
Any Security related certification(s)
An Understanding of the intelligence cycle
SANS SEC460: Threat and Vulnerability Assessment
SANS SEC487: Open-Source Intelligence Gathering and Analysis
SANS FOR578: Cyber Threat Intelligence
Any other Insider Threat related certification, procedure knowledge, experience
Listing Details
- Salary: $110000 - $130000
- Citizenship: Us Citizen
- Incentives: Not Provided
- Education: Bachelors Degree
- Travel: No Travel
- Telework: Full Telecommute