Cyber Threat InvestigatorMashreq • Bengaluru, Karnataka, India

Cyber Threat Investigator

Mashreq • Bengaluru, Karnataka, India

14 hours ago

Job description

Description :

Manage security event monitoring and incident response using SIEM platforms, with preference for Azure Sentinel and ArcSight. Analyze and respond to security events from diverse sources such as firewalls, IDS / IPS, antivirus solutions, DAM systems, web servers, proxies, and banking applications. Develop and maintain alert rules and logic within SIEM to ensure accurate detection of security events. Assist senior personnel in managing complex security incidents and improving incident response times.

Job Purpose : Administration :

Responsible for threat-hunting by proactively identifying and mitigating advanced threats within an organization’s network

This role involves working closely with the security operations team to enhance organization’s cybersecurity posture by proactively identifying and mitigating advanced threats

Key Result Areas :

Proactive Threat Hunting : Conduct proactive threat hunting activities to identify and isolate advanced threats that may bypass traditional security measures over network, endpoints, and cloud environments, searching for indicators of compromise (IOCs), advanced persistent threats (APTs), and other hidden adversary activity
Utilize advanced analytical techniques such as behavioral analysis, anomaly detection, and machine learning to identify emerging threats and patterns
Leveraging threat intelligence (both internal and external) to correlate and enhance hunting activities and adapt to new attack tactics, techniques, and procedures (TTPs).
Develop and apply hunting frameworks and methodologies to continuously improve detection capabilities. This includes leveraging frameworks like MITRE ATT&CK for understanding adversary tactics and behaviors.
Data Analysis : Analyze large datasets, network traffic, and user behavior to detect anomalies and potential security breaches
Hypothesis Development : Develop and test hypotheses about potential malicious activities within the organization’s environment.
Incident Response : Collaborate with the incident response team to investigate and respond to identified threats.
Threat Intelligence Integration : Utilize threat intelligence to inform and enhance threat hunting activities.
Reporting and Documentation : Document findings, create detailed reports, and communicate results to stakeholders.
Continuous Improvement : Stay updated with the latest threat landscapes, attack techniques, and security technologies to continuously improve threat hunting methodologies.

Key Principles :

Alignment with Business Priorities : Provide strategic direction and oversight of threat-hunting process, ensuring alignment with organizational goals and objectives

Ownership and Accountability : The threat hunting manager takes full responsibility for activities and the holding self and team accountable for their outcomes.

Driving Threat hunting Maturity Enhancement : This role proactively drives initiatives that enhance incident response and resilient cyber posture.

Focus on Outputs and Impact : Focus on delivering outputs that create meaningful impact such as enhanced security culture and protection posture of the bank.

Innovation and Automation : Continuously seek innovative solutions and automated processes for efficiency.

Continuous Learning and Improvement : Committed to learning from experiences and continuously improving the processes and outcomes.

Key skills : Essential knowledge

Have over 10+ years of rich experience in information security domain and at least 4-6 years of dedicated experience in Threat-hunting.

Proficiency in using threat intel platforms such as CybelAngel, ThreatConnect, Recorded Future, DarkTrace etc.

Proficiency in using SIEM and SOAR solutions.

Strong understanding of network protocols and security technologies.

Strong understanding of endpoint detection and response (EDR) tools.

Excellent analytical and problem-solving skills

Preferably worked in BFSI domain with proven experience in SOC function.

Knowledge of key security standards and regulations such as NIST 800-61, CERT / CC, ISO 27035 etc.

Skills and Application

Maintaining up-to-date knowledge of security landscape, threats, attack patterns and counter measures

Assess and design threat-hunting processes through solutions, tools and methodologies

Reviewing use cases / playbooks for integrating threat-intel

Continuously monitor security hygiene and performance using tools and processes

Collaborate with other IS teams, Ops and tech teams on enhancing security incident response resilience

Other

Knowledge of evolving advanced tech stacks and related control and risk universe from a threat-hunting perspective.

The ideal candidate will have a technical or computer science degree.

Professional certifications : GCIH, CISSP, CEH,etc.

Create a job alert for this search

Threat • Bengaluru, Karnataka, India

Related jobs

Cyber Security Analyst

DraconX • Bengaluru, IN

DraconX is at the forefront of transforming cutting-edge ideas into intelligent, scalable digital solutions.As pioneers in AI business automation and AI-driven SaaS platforms, we specialize in crea...Show more

Last updated: 3 days ago • Promoted

Cyber Security Risk Assessment Specialist

NAZZTEC • Bengaluru, Karnataka, India

Cybersecurity Risk Assessment Specialist.The ideal candidate will be responsible for conducting enterprise-wide risk assessments, identifying security gaps, ensuring compliance with international f...Show more

Last updated: 4 days ago • Promoted

Cyber Threat Management Lead

MUFG • Bengaluru, Republic Of India, IN

Japan’s premier bank, with a global network spanning in more than 40 markets.Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to busin...Show more

Last updated: 13 days ago • Promoted

Manager, Cyber Threat Analysis

FICO • Bengaluru, Republic Of India, IN

FICO (NYSE : FICO) is a leading analytics software company, helping businesses in 90+ countries make better decisions that drive higher levels of growth, profitability and customer satisfaction.The ...Show more

Last updated: 30+ days ago • Promoted

Cyber Threat Intelligence Lead

FICO • Bengaluru, Republic Of India, IN

Last updated: 30+ days ago • Promoted

Threat Detection Specialist

Webologix Ltd / INC • Bengaluru, Republic Of India, IN

Review daily operational activities and timely mentor junior analysts.Conduct detailed analysis on escalated events and handover the call to the Incident Response team along with appropriate eviden...Show more

Last updated: 30+ days ago • Promoted

Cyber Risk Assessment Specialist

NAZZTEC • Bengaluru, Republic Of India, IN

Last updated: 4 days ago • Promoted

Threat Intelligence Manager (Exclusively 6-7 years of Exp in Threat Intelligence)

FICO • Bengaluru, Karnataka, India

Last updated: 30+ days ago • Promoted

Cyber Security Instructor | Part Time | Remote

Thinkcloudly • Bangalore, IN

Remote

IT learning platform dedicated to helping individuals begin their journey to becoming IT professionals.We focus on upskilling our students by providing specialized courses that enhance their employ...Show more

Last updated: 13 days ago • Promoted

Cybersecurity Threat Hunter

Mashreq • Bengaluru, Republic Of India, IN

Last updated: 11 hours ago • Promoted • New!

Threat Detection and Response Analyst

Lenovo • Bengaluru, Republic Of India, IN

Security Operations Centre (SOC) Analyst plays a vital role in Security delivery.As a SOC Analyst Level 3, you will be on the front line of Cyber Defense, detecting & responding to Cyber Incidents ...Show more

Last updated: 24 days ago • Promoted

CyberArk Security Specialist

PwC • Bengaluru, Republic Of India, IN

IAM - CyberArk Senior Associate.CyberArk Certified Delivery Engineer (CDE) / CyberArk Sentry / CyberArk Defender (Mandatory). We are looking for an experienced IAM CyberArk Senior Associate to manag...Show more

Last updated: 13 days ago • Promoted

Cyber Security Lead Analyst - Pentesting

Societe Generale Global Solution Centre • Bengaluru, Karnataka, India

Expertise in conducting penetration testing on various infrastructure and network components including Cloud, Wireless LAN, Active directory etc. Thorough understanding of application architectures,...Show more

Last updated: 22 days ago • Promoted

Cyber Threat Mitigation Executive

Prestige Group • Bengaluru, Republic Of India, IN

Assist in monitoring and analysing security threats and vulnerabilities.Support penetration testing and vulnerability assessments. Help implement security controls and policies.Participate in incide...Show more

Last updated: 4 days ago • Promoted

Cyber Security Specialist

Innefu Labs • Bengaluru, IN

We are seeking experienced and detail-oriented professionals for the role.The selected candidates will be responsible for assisting cybercrime investigations by collecting and analysing digital evi...Show more

Last updated: 12 days ago • Promoted

Senior Security Analyst - Threat Intelligence

Mashreq • Bengaluru, Republic Of India, IN

Last updated: 11 hours ago • Promoted • New!

Cyber Threat Response Analyst

Embitel Technologies • Bengaluru, Republic Of India, IN

We are seeking a highly skilled and detail-oriented Cyber Security Specialist to protect our organization's digital assets and infrastructure from cyber threats. The ideal candidate will have a stro...Show more

Last updated: 3 days ago • Promoted

Threat Detection Specialist

Arista Networks • Bengaluru, Republic Of India, IN

We are seeking a highly motivated and proactive Security Operations Center (SOC) Analyst to join our dynamic, remote cybersecurity team. The ideal candidate is a critical thinker, self-starter, and ...Show more

Last updated: 6 days ago • Promoted