Full time,
Threat Hunting Support 1/2
Seeking an experienced Threat Hunter to detect and mitigate cybersecurity threats using advanced methods, forensics, and Splunk queries in a secure, high-impact environment.
We are seeking an experienced Threat Hunting Specialist to deliver high-impact services in a secure and dynamic environment. The ideal candidate will have a deep understanding of threat hunting methodologies, forensic analysis, and security operations, alongside strong technical and communication skills.
Key Responsibilities:
- Threat Hunting: Apply advanced methodologies to proactively identify security threats.
- Splunk Query Development: Craft and optimize SPL queries for effective data analysis.
- Forensic Analysis: Examine Windows artifacts such as Event Logs, UAL, and MFT.
- Event Analysis: Analyze Sysmon events to uncover potential threats.
- Collaboration: Participate in internal discussions to enhance service quality and reporting.
Required Qualifications:
- Experience in Threat Hunting: Strong background in detecting and addressing cyber threats.
- Splunk Expertise: Proficient in writing and refining SPL queries.
- Networking Knowledge: Solid understanding of networking protocols.
- Windows Forensic Methods: Familiarity with key forensic artifacts and investigative techniques.
- Programming Skills: Knowledge of Python and/or PowerShell is an asset.
- Tool Proficiency: Familiarity with Fidelis EDR, THOR, and Asgard (a plus).
- English Proficiency: Meets or exceeds NATO STANAG 6001 Level 3 “Professional Proficiency.”
Additional Skills:
- Strong attention to detail and commitment to delivering accurate results.
- Ability to report effectively to senior-level stakeholders.
- Previous experience in a military or governmental setting is an asset.
Key Details:
- Work Setup: Primarily on-site, with occasional remote work.
- Travel: Up to two monthly trips within the region for meetings, without overnight stays.
- Equipment: Necessary IT hardware will be provided.
- Security Clearance: A NATO SECRET clearance is required.
If you are a proactive professional with a passion for cybersecurity and the ability to succeed in high-security environments, we encourage you to apply. This role offers the opportunity to work on critical infrastructures and contribute tangibly to organizational security.
Apply
Click below to apply