Responsibilities:
- Perform continuous and mission-based Threat Hunting using available platforms such as but not limited to SIEM and EDR.
- Support and perform threat hunts as instructed by Threat Hunting team
- Identify and propose possible threat hunting mission based on threat landscape
- Build hunt hypothesis, execute and analyse results, and support the entire threat hunt cycle till closure of the finding.
- Create and develop rules from the hunt hypotheses suitable for detection
- Develop and present threat hunting report and slides on a monthly basis
- Develop and present threat hunting report and slides on a monthly basis
The Threat Hunter shall:
- Work full time;
- Professional certifications such as GMON, GCTD, GCFA, GNFA, GCFR, GCTI, GCIA, OSCP or other relevant certifications will be required;
- 2 years or more of experience as a full-time SOC analyst or threat hunter or related discipline will be required;
- Operational experience performing threat hunting using the EDR, NDR and SIEM;
- Must pass the L3 technical assessment for Threat Hunting and interview conducted by a joint panel