Expoint - all jobs in one place

The point where experts and best companies meet

Limitless High-tech career opportunities - Expoint

Cisco Threat Hunting Analyst / Senior 
China, Shanghai 
40911911

24.06.2024

full-time Senior Information Security Analystmitigation planning, incident detection and response, incident trending with analysis, and security architecture.

Responsibilities:

- Monitor security alerts using Splunk and other security tools, performthorough investigation and remediation of security

- Develop and refine detection strategies to identify security threats and anomalies, including custom detection rules, alerts and dashboards in Splunk.

- Stay ahead of emerging cyber threats and trends, and conduct regular threat hunting activities

- Use technical expertise to address security challenges across various platforms, including Cloud environments.(AWS, GCP, Azure, e

- Create automation scripts and tools to improve operations.

- AssistThreat Huntingin triage and event resolution

- Document cases, triage procedures and findingsaccurately and thoroughly

- Inform higher-level priorities, improvements and problem resolutionsto improve effectiveness.

- Develop security controls and conduct vulnerability assessments.

- Respond to cybersecurity breaches and perform root cause analysis.

- Continuously learn and adapt to new technologies and environments.

Key Requirements:

Above 5 years relevant working experience with degree in IT / CS / MIS / Information Security or equivalent operational experience (postgraduate degrees are a plus).

- IT technical experience in areas such as IT Infrastructure services (DNS, Web Servers, Email, etc…), Network, Operating Systems (Windows/Mac/Unix)/ Cloud security (AWS, GCP, Azure, etc…), identity management, web application management, security operations, and SIEM technologies (especially Splunk Enterprise).

- Strong knowledge of incident response, security trends, malware, antivirus, threat intelligence, and risk management.

- Detection Engineering Pipeline (and the development of detection rules)

- Experience with automation scripting (Python)

- Ability to work in a high-pressure Global environment, handle Security incidents, and be available for off-hours and on-call shifts.

- Fluent in spoken English and Chinese, documentation & communication skills.

Why You’ll Love Cisco

- We connect everything – people, process, data and things – and we use those connections to change our world for the better.

- We benefit everyone - We do all of this while striving for a culture that empowers every person to be the difference, at work and in our communities.