Threat Hunter Analyst

Posted Tuesday, October 8, 2024 at 11:00 PM

Trustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. We uncover threats that others can’t and respond quicker than others can to protect against the devastating impacts of cyberattacks. We’re a world-class team of cyber consultants, threat hunters and researchers serving clients in 96 countries. At Trustwave, you can learn alongside the best, make a personal impact on a global scale, and solve new challenges every day. Learn more about us at Trustwave .

As a Threat Hunter Analyst, you will work closely with our client at their location in Washington D.C. You will work with a team of people conducting threat hunts and preparing formal technical reports. Where active breaches are discovered, you will be part of the breach response team, working closely with cyber threat detection and response analysts and cyber threat intel analysts, to ensure malicious actors are rapidly removed and networks are properly remediated.

Ideal Candidate

While technical expertise is a primary qualification, this position also requires effective communication skills and business acumen. The selected candidate will frequently meet with executives and key client stakeholders to deliver threat hunting findings and technical reports.

We are looking for those who thrive in a fast-paced environment, crave learning opportunities, and excel as a creative problem solver committed to delivering exceptional customer outcomes.

Key Responsibilities

1. Conduct hunting, investigation, containment, reporting, and client engagement related to hunting activities utilizing a variety of tools.
2. Contribute to use-case development and detection strategies.
3. Seek opportunities to improve hunting approaches and utilization of threat intel.

Requirements

1. Experience conducting incident response and working with DFIR teams.
2. Malware analysis experience is also a major advantage.
3. Experience conducting endpoint-based threat hunting.
4. In-depth knowledge of Windows system administration and good network hygiene.
5. Knowledge/experience with Windows/Linux/OSX security and investigations.
6. Knowledge of various threat actor groups and TTPs they are known to utilize. Experience developing endpoint-based rules to detect such TTPs.
7. Knowledge and experience implementing MITRE ATT&CK framework into hunting and detection mechanisms.
8. Skilled speaker and able to communicate comfortably with security executives.
9. Skilled writer, able to communicate emerging threat activity through written communication.

Qualifications

1. 3+ years of experience in a security operations center or a similar environment.
2. Expertise in endpoint protection security controls.
3. Familiarity with network-based security controls (3+ years).
4. Excellent written and verbal communication skills.
5. Proven ability to navigate complex, multi-disciplined, distributed responsibility, and often ambiguous operational environments.

Education

1. A bachelor's degree in a security discipline or a related field is preferred. However, a minimum of a high school diploma or equivalent is required for employment.
2. Professional cyber security certifications a plus – Security+, CEH, CISSP, etc.

This opportunity is open to anyone legally authorized to work in the USA.

Trustwave is an Equal Opportunity Employer. We're committed to treating everyone with respect, one of our core TRUST Values, and strive to create a culture that empowers all Trustees to be their best, most authentic selves. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other federally protected class.