Job Listing
|
|
| Job ID: 14006752 |
|
| |
| Job Location: |
|
| |
|
|
| |
| How to Apply: | To see employer contact information, log in or register. |
| |
| Job Title: | Threat Hunter II |
| Work Type: | Work Days: Weekdays, Work Vary: No , Shift: First (Day), Hours Per Week: 40, Work Type: Regular |
| |
| Salary Offered: | Unspecified |
| Benefits: | Unspecified. |
| |
| Physical Required: | Unspecified |
| Drug Testing Required: | Unspecified |
| Education Required: | |
| |
| Experience Required: | Unspecified |
| |
| Required Skills: | See Job Description |
| Preferred Skills: |
|
| |
| |
| |
|
| Job Description: |
<strong>Problem Solvers. Proactive Protectors. Relentless Allies. </strong>
<br>
<br>
<strong>Ready to join us? Let's get started. </strong>
<br>
<br>A Threat Hunter is a technical role that focuses on identifying novel threats impacting Fortra clients and devising strategies to improve Fortra's ability to quickly detect similar activity in the future. It is an exciting opportunity for professionals with both strong technical skills and an analytic mindset that relish the challenge of discovering new ways to reliably pinpoint adversary activity impacting organizations across the world. Working as part of a team, you will operate alongside Data Science, Security Analysts, Threat Intelligence, and other functions within Fortra that share the mission of ensuring that Fortra threat identification remains at the bleeding edge and is able to detect threats of all levels of sophistication.<br>
<br>We are looking for an experienced Threat Hunter II - Managed Email Security with specific expertise in identifying malicious emails. This role is best suited for individuals with a strong understanding of email-based threats and underlying email technologies, and who possesses the critical thinking and analysis skills required to design reliable detection strategies with minimal direction.<br>
<br>
<strong>WHAT YOU'LL DO</strong>
<br>
<ul>
<li>Identify emerging trends in malicious email tactics by analyzing confirmed malicious emails and email metadata from multiple internal and external data sources.</li>
<li>Using triggers such as external threat indicators, current world events, or novel TTPs, devise strategies to identify previously undetected malicious emails.</li>
<li>Leverage a combination of proprietary and open-source systems to develop malicious email detection patterns.</li>
<li>Validate high-impact detection alerts to ensure that they do not impact legitimate client traffic.</li>
<li>Partner with our Data Science team on improving ML models to deal with evolving adversary behaviors by operating as an SME for TTPs currently in the wild</li>
<li>Collaborate with our Managed Threat Intelligence group to support investigations into adversaries or activity groups of interest. Act as a POC for incoming RFIs and ensure that they are completed successfully</li>
<li>Peer review newly generated detection logic to ensure maximum impact and fidelity.</li>
<li>Assist in the day-to-day operation of the team to ensure that all key objectives and deliverables are met.</li>
<li>Coach junior team members on best practices, efficiencies, and skills development to grow their capabilities. </li>
<li>Assist Leadership in reviewing audits and delivering training to analysts as needed.</li>
<li>Other duties as assigned.</li></ul>
<strong>QUALIFICATIONS</strong>
<br>
<ul>
<li>Bachelor's degree with a focus in computer science, computer information systems, or related discipline, or equivalent combination of education, professional certifications, and experience.</li>
<li>2-5 years of experience in a Security Operations, Threat Hunting, or Threat Research capacity.</li>
<li>Experience in creating methods to detect or score emails. Experience implementing detections in tools such as YARA, SpamAssassin, rspamd, or others is preferred.</li>
<li>In-depth knowledge of underlying Email Technologies including SMTP, SPF/DKIM/DMARC, MIME, and others.</li>
<li>Extensive knowledge of email-based attack TTPs. This includes areas such as social engineering, malicious sending strategies, and payload types and indicators (phishing, malware, BEC, and others).</li>
<li>Experience in using analysis techniques and tools such as Excel, Maltego, IRIS, or others to find patterns in large datasets.</li>
<li>Moderate to fluent knowledge of RegEx (Perl)</li>
<li>A detail-oriented and analytic mindset.</li>
<li>A track record of ownership, accountability, and success.</li>
<li>Thrives in both a requirements-driven and a self-directed environment, and is able to seamlessly switch between these modes of operating.</li>
<li>Strong critical thinking capabilities: ability to find solutions to problems with minimal handholding and oversight.</li>
<li>Excellent written and verbal communication skills with an emphasis on communicating technical concepts to others. </li></ul>
<br>
<strong>About Us</strong>
<br>
<br>This is Fortra, where we're making a difference by offering a best-in-class solutions portfolio, proactively adapting to the ever-evolving cybersecurity threat landscape, and putting people first. Fortra is a cybersecurity company like no other. We're known for our innovative software and services, world-class support, and the commitment and satisfaction of employees across the globe. Our approach is different, and we're proud of that. For more information about what it's like to work for us, and learn about our culture, benefits, or perks, connect with us on LinkedIn. <br>
<br>
<strong>We Are Fortra</strong>
<br>
<br>Our people make us great. Our employees are a resilient and diverse group of global problem solvers, proactive protectors, and relentless allies, empowered to show up every day authentically, ready to fight the good fight with Fortra. Here at Fortra, we believe we're stronger when we're all stronger. That's why we're committed to supporting and empowering our employees through a host of offerings, including competitive benefits and salaries, personal and professional development opportunities, flexibility, and much more! <br>
<br>Visit our website to learn more about why employees choose to work for Fortra. Remember to check out our Glassdoor to learn what our employees are saying and connect with us on LinkedIn.<br>
<br>As an EEO/Affirmative Action Employer, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, veteran or disability status.
Refer to ID 4345293006-6409 when applying |
|