Enable job alerts via email!

Senior Threat Hunter & Incident Responder

The Restaurant Store, LLC

Lititz (Lancaster County)

On-site

USD 90,000 - 130,000

Full time

7 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading restaurant supply distributor is seeking a Senior Threat Hunter & Incident Responder to enhance their cybersecurity posture. This role involves developing threat hunting programs, analyzing threats, and improving incident response capabilities. Ideal candidates will have extensive experience in security, proactive threat detection, and a passion for continuous improvement.

Qualifications

Experience in a senior security role, focusing on threat detection and incident response.
Knowledge of SIEM, IDS/IPS, EDR tools, and threat intelligence feeds is essential.
Strong analytical skills for data analysis and incident documentation.

Responsibilities

Monitor SIEM, IDS/IPS, and EDR tools for security incidents.
Conduct proactive threat hunting to identify evaded threats.
Create detailed incident reports and advocate for proactive strategies.

Skills

Cybersecurity

Threat Hunting

Data Analysis

Documentation

Incident Response

Job Summary

As the largest online distributor of restaurant supplies and equipment, WebstaurantStore, a Clark Associates company, hosts an expansive catalogue with over 430,000 products that are delivered through fast, dependable shipping, making us the internet's largest restaurant supplier. Our CAST (Clark Associates Security Team) is committed to maintaining the highest standards of security and integrity in all our applications and systems.

We are seeking an experienced senior security professional to fill our opening for a Senior Threat Hunter & Incident Responder. In this role, you will assist with building out our threat hunting program as we seek to proactively identify cyber threats that may evade our traditional automated detection methods. Additionally, you will assist in maturing the organization’s incident response capabilities through playbook creation & refinement. As necessary, this role will also facilitate incident response efforts from detection through recovery. Individuals interested in playing an active role in shaping the organization’s threat detection & response activities are encouraged to apply.

Responsibilities

Real-Time Monitoring: Actively monitor SIEM, IDS/IPS, and EDR tools to detect potential security incidents.
Proactive Threat Identification: Conduct threat-hunting activities to identify threats that may have bypassed existing security controls, using a combination of manual analysis and automated tools.
Data Analysis: Analyze large datasets from SIEM, EDR, network traffic, and other sources to identify patterns indicative of malicious activity or make recommendations for tool improvement.
Threat Intelligence Integration: Leverage threat intelligence feeds to inform hunting activities and stay up-to-date on the latest adversarial tactics, techniques, and procedures (TTPs).
Incident Analysis: Analyze malicious code, network traffic, and system logs to identify the root cause of incidents, potential vulnerabilities, and Indicators of Compromise (IoCs).
Documentation: Create detailed incident reports, including root cause analysis, mitigation actions, and lessons learned, ensuring thorough documentation for future reference.
Continuous Improvement: Stay informed about emerging threats, frameworks, and best practices to advocate for proactive strategies and controls. Regularly evaluate the organization’s threat landscape & incident response protocols to recommend improvements or additions to defense preparations.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs