Incident Response Threat Hunter

Yes

R0219258

Cambridgeshire, GB

• Facebook
• LinkedIn
• X
• Email

Are you looking for a threat hunter role, detecting cyber threats in support of active forensic investigations? Cyber threats are evolving, and when perimeter security and automated protection aren’t enough, networks can be compromised. Information may be accessed, data exfiltrated, backups wiped, and ransomware deployed, locking up entire organizations. Join our threat detection and response team to perform active threat hunting and assist organizations in recovering from cyber incidents.

We’re seeking CND and CNO specialists who can think like cyber attackers to understand how security measures are circumvented. This role offers an opportunity to utilize your analytical skills and gain endpoint detection and response experience to identify indicators of compromise. You will collaborate with incident response analysts engaged in forensic investigations.

Join us. The world can't wait.

• Experience with EDR platforms such as Carbon Black, SentinelOne, CrowdStrike, or Defender for Endpoint
• Experience with network- and host-based intrusion analysis, digital forensics, or malware handling
• Experience with hunt teams, cyber threat intelligence, incident response, or security operations teams
• Knowledge of security principles, including MITRE ATT&CK framework, threat landscapes, or attacker TTPs
• Knowledge of Microsoft Windows, UNIX, and Mac systems
• Knowledge of security tools across application, data, network, and endpoint layers
• Ability to leverage internal and external resources for researching threats, vulnerabilities, and attacker infrastructure
• Ability to identify anomalous behavior on endpoints or network communications
• HS diploma or GED

• Experience with digital forensics from a malware perspective on host or network
• Knowledge of network communications, routing protocols, regulatory standards and compliance, and common internet applications and standards
• Knowledge of native system and network policies
• Certifications such as GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Analyst (GCFA), GIAC Network Forensics Analyst (GNFA), Offensive Security certifications like OSCP and OSCE, or related credentials

All qualified applicants will receive consideration for employment without regard to disability, protected veteran status, or any other protected status under applicable laws.