Finding the best job has never been easier
Share
The team you'll be part of
(CDC) is looking for a Threat Intelligence and Threat Hunting Security Professional taking up responsibilities in the CDC Engineering and Threat Hunting Team.
What you will learn and contribute to
In the remainder of this document, the profile we’re looking for will be referenced as ‘TI & TH-professional’.
The TI & TH-professional is capable of addressing the challenges regarding the management of Threat Intelligence information (aka TI info). I.e. establish an effective lifecycle management and incrementally improve the value add of the available threat intel through the (auto-)enrichment of security event data. The activities in scope of the TI activities include (non-exhaustive view):
- Identification of relevant TI-feeds in support of stakeholders needs
- Support (auto-)enrichment of event information through the ingestion of TI information in our TI platform (MISP)
- Support the establishment of an effective TI reporting mechanism
- Look for options to improve the ‘value add’ of the available intel
The ‘TI & TH-professional’ will actively supported the execution of defined hunts and diligently carry out the full lifecycle, i.e. from hypothesis definition up to documenting findings and sharing the insights with stakeholders. The activities in scope include (non-exhaustive view):
· Digest the information made available through the TI- and TM-activities
· Propose topics for new hunts, considering the priorities associated with specific TTPs
· Prepare the execution of hunts, including a validation whether the prerequisites to successfully execute a hunt are met
· Execute the hunt, in line with the agreed restrictions (i.e. time, scope, effort)
· Consolidate findings and involve relevant stakeholders to discuss them; in the event security gaps are found, ensure that the right steps are taken to get these gaps (eventually) resolved
· Upon concluding the hunt, document findings and, when relevant, suggest improvements for future hunts
Gradually, the focus will shift towards including the outcome of ‘Threat Modelling’-activities as an effective ‘Threat Hunting’-capability heavily depends on having access to relevant and well-maintained threat models.
Your skills and experience
In the overview below, a series of requirements or expectations are listed. This overview is not to be considered as a need-to-have for all but, in the case a particular expectation cannot be met, it is expected that the applicant is aspiring to (eventually) fulfill the expectation.
Nokia has received the following recognitions for its commitment to inclusion & equality:
Similar Jobs
These jobs might be a good fit