Senior Threat Hunt Analyst

Job not on LinkedIn

July 2

Apply Now

Receive Emails with Similar Jobs

PUNCH Cyber Analytics Group

WebsiteLinkedInAll Job Openings

Cybersecurity

PUNCH Cyber Analytics Group is a cyber-consulting firm that specializes in advanced analytics and providing strategic support to both government and commercial clients. The company focuses on improving organizational awareness and capability to manage increasing cyber threats. Key services include Security Operations, Threat Intelligence, Incident Response, and Threat Hunting. PUNCH provides custom tool development and supports Security Operations Center analysts from conceptualization to optimization. With a background of monitoring and preventing significant global cyber threats, their services extend to technical analysis and Research & Development in scalable cyber data analysis. They have been awarded a U. S. General Services Administration Schedule 70 contract, facilitating services across federal agencies.

11 - 50 employees

🔒 Cybersecurity

📋 Description

• PUNCH Cyber Analytics Group (PUNCH) is seeking a Threat Hunt Analyst and Security Operation Center Analysts to join our team. • Must be a focused, self-motivated, detail-oriented, and communicative team member. • Capable of not only performing technical analysis and adversary tracking, but also active in sharing knowledge across the team. • This is a remote position – must be comfortable communicating and collaborating with the team over virtual platforms (MS Teams, Slack) and be focused and self-motivated to achieve success. • The ideal candidate will have experience in incident response, threat hunting and threat intelligence. • Shift is a 4 days/10 Hour weekly schedule allowing for 3 days off per week.

🎯 Requirements

• 1-3 years work experience working in Security Operations Centers • Experience using Splunk ES in an operational environment • Background (formal or informal) in hands on computer and networking experience to include a good understanding of TCP/IP, routing, and major Internet protocols • Strong desire and ability to learn and experiment with new technologies • Must be able to work independently as well as in a team environment • Experience tracking APT adversaries and network infrastructure • Familiarity with concepts like diamond model, Att&ck framework, cyber kill chain a plus • Prior experience with developing, tuning and refining novel and advanced hunting techniques • Experience and exposure to using and administrating MISP for indicator management a plus • Experience with a variety of data sets for hunting and analysis (Censys, Shodan, Virustotal, Passivetotal, Domaintools) a plus • Weekend and holiday work may be required.