Listing Description
Key Responsibilities:
•Leads threat hunt program by proactively and iteratively searching through networks to detect and isolate cyber threats.
•Leads red and blue team activities to continuously test security tools coverage.
•Create architecture and designs for global incident response and threat hunting technology.
•Trusted expert on how to best deploy and use security prevention and detection controls.
•Prepares assessments and cyber threat profiles of current events based on the sophisticated collection, research, and analysis of cyber threat intelligence.
•Works closely with other cyber security stakeholders to develop a fuller understanding of the intent, objectives, and activity of cyber threat actors.
•Works closely with Cybersecurity and other IT and business stakeholders to help prioritize and close controls gaps and reduce enterprise risk.
•Supports incident response team to identify and clear major security incidents.
Context and Scope:
•Functionally guide and direct associates and third party teams.
•Broad knowledge of vendor landscape and capabilities.
•Technical expertise in threat intelligence and security technologies and deep knowledge of Mars platforms.
•Develops internal relationships with Cybersecurity Engineering and other business stakeholders.
•Work during non-standard business hours at times in support of incident response activities.
Job Specifications/Qualifications:
Education & Professional Qualification:
•University degree (engineering/IT/computer science) or equivalent work experience
•Advanced University degree or CISSP certification preferred
•Intermediate level cyber security certifications: SANS GCIH (GIAC Certified Incident Handler), SANS GCFE (GIAC Certified Forensics Examiner).
•Advanced level cyber security certifications preferred: SANS GCFA (GIAC Certified Forensics Analyst), SANS GREM (GIAC Certified Reverse Engineering Malware), SANS GPEN (GIAC Certified Penetration Tester), SANS GCED (GIAC Certified Enterprise Defender).Engineering Malware), SANS GPEN (GIAC Certified Penetration Tester), SANS GCED (GIAC Certified Enterprise Defender).
Knowledge/Experience:
•7+ years work experience in IT cyber security or related information technology areas
•Understanding of offensive computing/hacker techniques
•Understanding of networking fundamentals (TCP/IP, Network Layers, etc.).
•Understanding of cloud platforms preferred.
•Understanding of factory/ICS platforms preferred.
•Scripting experience preferred (e.g. Python, PowerShell, bash).
•Ability to work both individually and as part of a team.
•Strong technical writing and speaking skills.Key Responsibilities:
•Leads threat hunt program by proactively and iteratively searching through networks to detect and isolate cyber threats.
•Leads red and blue team activities to continuously test security tools coverage.
•Create architecture and designs for global incident response and threat hunting technology.
•Trusted expert on how to best deploy and use security prevention and detection controls.
•Prepares assessments and cyber threat profiles of current events based on the sophisticated collection, research, and analysis of cyber threat intelligence.
•Works closely with other cyber security stakeholders to develop a fuller understanding of the intent, objectives, and activity of cyber threat actors.
•Works closely with Cybersecurity and other IT and business stakeholders to help prioritize and close controls gaps and reduce enterprise risk.
•Supports incident response team to identify and clear major security incidents.
Listing Details
- Citizenship: Us Citizen
- Incentives: Bonus
- Education: High School Diploma
- Travel: Travel 25
- Telework: Optional Telecommute