Pi-Square Technologies is Hiring a Threat Hunting Operations Analyst Near Plano, TX
Job DescriptionThe Threat Hunting Operations Analyst is responsible for proactively discovering new, undetected threats within the organization's environment. This role demands a deep understanding of the cyber threat landscape, attacker tactics, techniques, and procedures (TTPs), and robust analytical skills to identify potential threats before they cause harm. This role is crucial in the defense of our organization's digital assets, requiring a proactive stance against cyber threats and the ability to quickly adapt to emerging technologies and methodologies in cybersecurity. Key ResponsibilitiesProactive Hunting: Design and implement proactive hunting operations across the network and endpoint environments to detect indicators of compromise (IOCs) that are not identified by existing security tools. Utilize threat intelligence, hypothesis-driven approaches, and advanced analytics to identify potential security breaches. Analysis And InvestigationAnalyze network traffic, logs, and endpoint data for unusual activity and patterns that suggest attacker tactics. Use forensic tools and techniques to conduct in-depth examinations of any potential intrusions. Threat IntelligenceIntegrate external threat intelligence into internal security operations to inform hunting strategies. Maintain up-to-date knowledge of the threat trends, threat campaigns, attack vectors, TTPs, cybercrime, and other relevant threats to develop hunting use cases. Tool DevelopmentDevelop scripts, tools, or methodologies to enhance the capability of the threat hunting team. Customize security tools and technologies to improve detection and response capabilities. Collaboration And ReportingWork closely with the incident response team to support the resolution of threats, and to coordinate and create remediation plans. Prepare detailed documentation and reports on findings and hunting activities. Qualifications/Requirements3 years of experience in Security Operations or Incident Response Knowledge of Cyber Kill chain, MITRE ATTACK framework and modern penetration testing techniques Knowledge of operating system internals and attack techniques Experience with offensive security including tools and OSINT. Experience with reverse engineering, digital forensics or incident response Advanced knowledge of network monitoring and network exploitation techniques Experience with common attack vectors, including advanced adversaries (nation state/financial motivation) Knowledge around common web application attacks including SQL injection, cross-site scripting, invalid inputs, and forceful browsing Ability to demonstrate analytical expertise, close attention to details, excellent critical thinking, logic, and solution orientation and to learn and adapt quickly Ability to learn and operate in a dynamic environment Knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB Strong verbal and written communication skills Pi-square technologies is a Michigan (USA) Headquartered Automotive Embedded Engineering Services company, Synergy Partner for major OEMs and Tier 1s and their implementation partners in Automotive Embedded Product Development, Projects, Requirements Analysis, Software Design, Software Implementation, Efficient Build, Release Process, and turnkey software V & V Services. We have more than 20 years of industry expertise with specialization in the latest cutting-edge automotive technologies such as Infotainment, connected vehicles, Cyber security, OTA, and Advanced Safety/ Body electronics.