Threat Management Expert

The Threat Management Expert is responsible for leading the detection, investigation, and mitigation of cybersecurity threats across ADC’s digital infrastructure. In this role you will focus on proactively identifying threat actors, responding to incidents, and continuously enhancing threat detection and response capabilities using advanced security technologies.

• Lead end-to-end incident response activities including detection, triage, investigation, containment, eradication, and recovery, and maintain deep technical expertise across key domains including cloud security, computer forensics, malware analysis, operating systems, networking and incident management.
• Analyze and respond to cyber threats using SIEM, SOAR, EDR, NDR, UBA, TIP, and firewall solutions.
• Conduct deep-dive forensic investigations and root cause analysis of security incidents.
• Perform threat hunting activities to identify malicious behavior and advanced persistent threats.
• Collaborate with threat intelligence teams to enrich indicators of compromise (IOCs) and develop actionable insights.
• Provide advanced threat analysis and assess vulnerabilities within on-prem and cloud environments.
• Create and refine detection rules, playbooks, and response workflows.
• Continuously assess and improve incident response plans, threat management processes, and technical documentation.
• Act as a subject matter expert in malware analysis, network forensics, and cloud threat detection.
• Mentor junior responders and help develop internal threat response capabilities.

• Bachelor’s degree in Cybersecurity, Computer Science, Computer Engineering, Software Engineering, or a related field.
• Preferred to have professional certificates such as (GCIH, ECIH, GCFA, GREM, GCFR, and PECB Certified Incident Responder)

• +6 years of experience in Cybersecurity, with at least 5 years focused on Threat Management, Incident Response, or Cyber Defense.
• Proven experience in managing security incidents in large-scale environments.
• Experience working in regulated or high-risk industries is a plus.

• Advanced understanding of Incident Management and Threat Analysis.
• Proficiency in Operating Systems (Windows and Linux)
• Advanced expertise in Networking
• Deep understanding of Malware Analysis and Computer Forensics
• Knowledge of Cloud Security (Azure, AWS, GCP)
• Proven technical experience of the following security technologies: SOAR, EDR, NDR, SIEM, TIP, UBA, Firewalls.
• Basic understanding of Cloud Security.
• Intermediate understanding of Computer Forensics.
• Intermediate understanding of Malware Analysis.
• Advanced understanding of Computer Operating Systems.
• Advanced understanding of Networking.
• Advanced understanding of incident management.
• Advanced understanding of Threat Analysis.