let’s make something together

Give us a call or drop by anytime, we endeavour to answer all enquiries within 24 hours on business days.

Find us

PO Box 16122 Collins Street West
Victoria 8007 Australia

Email us

info@domain.com
example@domain.com

Phone support

Phone: + (066) 0760 0260
+ (057) 0760 0560

Threat Hunter Ops

  • By Paulina Motowidlo
  • 27 April 2022
  • 167 Views

You will join one of the largest bank in the world.

.

ABOUT THE PROJECT


Global Cybersecurity Operations (GCO) provides a coordinated suite of “Network Defense” services responsible for detecting and responding to information and cybersecurity threats to company assets across the globe and is under the management of the Head of Global Cybersecurity Operations. This includes dedicated functions for the monitoring and detection of threats within the global estate as well as Cybersecurity Incident Management and Response activities.

The Cybersecurity Monitoring and Threat Detection Team are charged with efficiently and effectively monitoring the  global technology and information estate 24×7. The team’s mission is to detect the presence of any adversary within the estate, quickly analyze the severity and scope of the issue and work with the Cybersecurity Incident Management and Response Team to contain, mitigate and remediate the incursion. In addition, the team is responsible for constantly improving its detection capability through attack analysis and ensuring that the appropriate security event information is being fed into the team and that the alerting rules are tuned for maximum effectiveness.  

.

Required:

  • Excellent investigative skills, insatiable curiosity, and an innate drive to win
  • Instinctive and creative, with an ability to think like the enemy
  • Proven experience in identifying and responding to advanced attacker methodologies both within the corporate environment as well as external attack infrastructures, ideally with offensive experience and / or deception environment development (tripwire systems, honeypots, honey-token/accounts, etc.) using open source, vendor purchased and bespoke/in-house solutions

.

YOUR RESPONSIBILITIES:

  • Hunting for malicious or anomalous activity across the enterprise, using existing tools. Acting in coordination with GCO staff to lead the development and implementation of an advanced analysis and search capability focused on identifying potentially sophisticated APT and insider threat activities within the organisation.
  • Researching new and existing threat actors and associated tactics, techniques and procedures (TTPs); developing a detailed understanding of their potential impact to the organisation, providing recommended solutions for improving our defensive and detective capability.

.

SKILLS & EXPERIENCE THEY REQUIRE:

  • Excellent investigative skills, insatiable curiosity, and an innate drive to win
  • Instinctive and creative, with an ability to think like the enemy
  • Proven experience in identifying and responding to advanced attacker methodologies both within the corporate environment as well as external attack infrastructures, ideally with offensive experience and / or deception environment development (tripwire systems, honeypots, honey-token/accounts, etc.) using open source, vendor purchased and bespoke/in-house solutions
  • Ability to speak, read and write in English, in addition to your local language
  • Highest level of technical expertise in information security, including deep familiarity with relevant penetration and intrusion techniques and attack vectors
  • Expert level knowledge and demonstrated experience of common intelligence sharing platforms / protocols and experiencing operating within a collective defence environment
  • Expert level knowledge and demonstrated experience in analysis and dissection of advanced attacker tactics, techniques and procedures in order to inform adjustments to the control plane
  • experience in computer forensics, vulnerability analysis, cyber security analysis, penetration testing and/or network engineering

.

WHAT THEY OFFER:

  • Stable job in professional team,
  • Interesting path of career in an international organization,
  • Consistent scope of responsibilities,
  • Private health care, employees’ benefits.

.

Note: Prepare your CV in English (PDF), fill in the form, and apply! 🙂
Please include in your CV the following clause necessary for the recruitment process:

“I agree to the processing of personal data that I have made available voluntarily in the recruitment process by the Administrator of personal data, i.e. Dotcommunity Spółka z ograniczoną odpowiedzialnością [Ltd.] based in Cracow, 15 Żabiniec Street, 31-215 Cracow, registered in Poland, the Cracow’s District Court – Śródmieście, XI Commercial Division of the National Court Register under number 0000468484, VAT number: 9452174499, (“Dotcommunity”) in order to carry out the recruitment process for the Threat Hunter Ops position on the basis of Art.6 item 1a of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)”

Dotcommunity jest zarejestrowana w Rejestrze agencji zatrudnienia (KRAZ) pod numerem 9904.

    *-required