Talent.com
Cyber Threat Investigator

Cyber Threat Investigator

MashreqBangalore, Bangalore (district)
4 days ago
Job description

Description :

Manage security event monitoring and incident response using SIEM platforms, with preference for Azure Sentinel and ArcSight. Analyze and respond to security events from diverse sources such as firewalls, IDS / IPS, antivirus solutions, DAM systems, web servers, proxies, and banking applications. Develop and maintain alert rules and logic within SIEM to ensure accurate detection of security events. Assist senior personnel in managing complex security incidents and improving incident response times.

Job Purpose : Administration :

Responsible for threat-hunting by proactively identifying and mitigating advanced threats within an organization’s network

This role involves working closely with the security operations team to enhance organization’s cybersecurity posture by proactively identifying and mitigating advanced threats

Key Result Areas :

  • Proactive Threat Hunting : Conduct proactive threat hunting activities to identify and isolate advanced threats that may bypass traditional security measures over network, endpoints, and cloud environments, searching for indicators of compromise (IOCs), advanced persistent threats (APTs), and other hidden adversary activity
  • Utilize advanced analytical techniques such as behavioral analysis, anomaly detection, and machine learning to identify emerging threats and patterns
  • Leveraging threat intelligence (both internal and external) to correlate and enhance hunting activities and adapt to new attack tactics, techniques, and procedures (TTPs).
  • Develop and apply hunting frameworks and methodologies to continuously improve detection capabilities. This includes leveraging frameworks like MITRE ATT&CK for understanding adversary tactics and behaviors.
  • Data Analysis : Analyze large datasets, network traffic, and user behavior to detect anomalies and potential security breaches
  • Hypothesis Development : Develop and test hypotheses about potential malicious activities within the organization’s environment.
  • Incident Response : Collaborate with the incident response team to investigate and respond to identified threats.
  • Threat Intelligence Integration : Utilize threat intelligence to inform and enhance threat hunting activities.
  • Reporting and Documentation : Document findings, create detailed reports, and communicate results to stakeholders.
  • Continuous Improvement : Stay updated with the latest threat landscapes, attack techniques, and security technologies to continuously improve threat hunting methodologies.

Key Principles :

  • Alignment with Business Priorities : Provide strategic direction and oversight of threat-hunting process, ensuring alignment with organizational goals and objectives
  • Ownership and Accountability : The threat hunting manager takes full responsibility for activities and the holding self and team accountable for their outcomes.
  • Driving Threat hunting Maturity Enhancement : This role proactively drives initiatives that enhance incident response and resilient cyber posture.
  • Focus on Outputs and Impact : Focus on delivering outputs that create meaningful impact such as enhanced security culture and protection posture of the bank.
  • Innovation and Automation : Continuously seek innovative solutions and automated processes for efficiency.

    • Continuous Learning and Improvement : Committed to learning from experiences and continuously improving the processes and outcomes.

    Key skills : Essential knowledge

  • Have over 10+ years of rich experience in information security domain and at least 4-6 years of dedicated experience in Threat-hunting.
  • Proficiency in using threat intel platforms such as CybelAngel, ThreatConnect, Recorded Future, DarkTrace etc.
  • Proficiency in using SIEM and SOAR solutions.
  • Strong understanding of network protocols and security technologies.
  • Strong understanding of endpoint detection and response (EDR) tools.
  • Excellent analytical and problem-solving skills
  • Preferably worked in BFSI domain with proven experience in SOC function.
  • Knowledge of key security standards and regulations such as NIST 800-61, CERT / CC, ISO 27035 etc.

    • Skills and Application

  • Maintaining up-to-date knowledge of security landscape, threats, attack patterns and counter measures
  • Assess and design threat-hunting processes through solutions, tools and methodologies
  • Reviewing use cases / playbooks for integrating threat-intel
  • Continuously monitor security hygiene and performance using tools and processes
  • Collaborate with other IS teams, Ops and tech teams on enhancing security incident response resilience

    • Other

  • Knowledge of evolving advanced tech stacks and related control and risk universe from a threat-hunting perspective.
  • The ideal candidate will have a technical or computer science degree.
  • Professional certifications : GCIH, CISSP, CEH,etc.
    • Create a job alert for this search

    Cyber Threat Threat • Bangalore, Bangalore (district)

    Related jobs
    • Promoted
    Cyber Security Analyst

    Cyber Security Analyst

    DraconXBengaluru, IN
    DraconX is at the forefront of transforming cutting-edge ideas into intelligent, scalable digital solutions.As pioneers in AI business automation and AI-driven SaaS platforms, we specialize in crea...Show moreLast updated: 7 days ago
    • Promoted
    Cyber Security Lead

    Cyber Security Lead

    Societe Generale Global Solution CentreBengaluru, Karnataka, India
    Ability to identify, propose, design and run the operational and security risk Controls.Sound understanding of various cybersecurity controls and their relevance to handle various threat scenarios....Show moreLast updated: 5 days ago
    • Promoted
    Hiring For Email Surveillance Role- Corporate And Forensic Compliance

    Hiring For Email Surveillance Role- Corporate And Forensic Compliance

    Acuity Knowledge PartnersBengaluru, Republic Of India, IN
    Hiring for Associate / Senior Associate / Delivery Lead- Email Surveillance expertise candidates.This role is part of corporate and forensic compliance team and works closely with stakeholders for con...Show moreLast updated: 12 days ago
    • Promoted
    Cyber Investigations Specialist

    Cyber Investigations Specialist

    ConfidentialBengaluru / Bangalore, India
    Cyber Investigations Specialist.Legal, Compliance, and Law Enforcement.Cybersecurity, Computer Science, IT.Email Security – Cisco IronPort. Digital Forensics, Networking, Windows, Incident Response,...Show moreLast updated: 21 days ago
    • Promoted
    Threat Intelligence Manager (Exclusively 6-7 Years Of Exp In Threat Intelligence)

    Threat Intelligence Manager (Exclusively 6-7 Years Of Exp In Threat Intelligence)

    FICOBengaluru, Republic Of India, IN
    FICO (NYSE : FICO) is a leading analytics software company, helping businesses in 90+ countries make better decisions that drive higher levels of growth, profitability and customer satisfaction.The ...Show moreLast updated: 30+ days ago
    • Promoted
    Fraud Investigation & Detection Analyst

    Fraud Investigation & Detection Analyst

    ConfidentialBengaluru / Bangalore
    Teamware Solutions is seeking a vigilant.Fraud Investigation & Detection Analyst.You'll play a critical role in safeguarding our operations and clients by identifying, analyzing, and preventing fra...Show moreLast updated: 30+ days ago
    • Promoted
    Threat Intelligence Manager (Exclusively 6-7 years of Exp in Threat Intelligence)

    Threat Intelligence Manager (Exclusively 6-7 years of Exp in Threat Intelligence)

    FICOBengaluru, Karnataka, India
    FICO (NYSE : FICO) is a leading analytics software company, helping businesses in 90+ countries make better decisions that drive higher levels of growth, profitability and customer satisfaction.The ...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Lead Analyst - Pentesting

    Cyber Security Lead Analyst - Pentesting

    Societe Generale Global Solution CentreBengaluru, Karnataka, India
    Expertise in conducting penetration testing on various infrastructure and network components including Cloud, Wireless LAN, Active directory etc. Thorough understanding of application architectures,...Show moreLast updated: 26 days ago
    • Promoted
    Cyber Threat Investigator

    Cyber Threat Investigator

    ConfidentialBengaluru / Bangalore, India
    At ColorTokens, we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happen—but with our cutting-edge ColorTokens Xshield™ platform, c...Show moreLast updated: 21 days ago
    • Promoted
    Cyber Threat Intelligence Researcher

    Cyber Threat Intelligence Researcher

    ConfidentialBengaluru / Bangalore, India
    We are a bunch of super enthusiastic, passionate, and highly driven people, working to achieve a common goal! We believe that work and the workplace should be joyful and always buzzing with energy!...Show moreLast updated: 21 days ago
    • Promoted
    Hiring Fraud Investigation and Risk Investigation Specialist!!CTC 7.5L

    Hiring Fraud Investigation and Risk Investigation Specialist!!CTC 7.5L

    ConfidentialBengaluru / Bangalore
    Kindly Note : We are looking @ Minimum 2 Year of an experience into Fraud Investigation / Risk Investigation / SAR in International BANKING only. Call the below mentioned Number to book your slots and...Show moreLast updated: 29 days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Innefu LabsBengaluru, IN
    We are seeking experienced and detail-oriented professionals for the role.The selected candidates will be responsible for assisting cybercrime investigations by collecting and analysing digital evi...Show moreLast updated: 16 days ago
    • Promoted
    • New!
    Cyber Security Analyst - IAM / PAM - Onsite@Bengaluru - Pay : 11LPA - Contract

    Cyber Security Analyst - IAM / PAM - Onsite@Bengaluru - Pay : 11LPA - Contract

    IHBengaluru, Karnataka, India
    Cyber Security Analyst - IAM / PAM - Onsite@Bengaluru - Pay : 11LPA - Contract.Handling projects related to IAM, PAM, and security.Show moreLast updated: 1 hour ago
    • Promoted
    • New!
    Cyber Security Architect

    Cyber Security Architect

    PeopleLogicBengaluru, Karnataka, India
    We are seeking a seasoned Cyber Security Architect with over a decade of.The ideal candidate will collaborate closely with. Corporate Security and other stakeholders to ensure alignment with.Archite...Show moreLast updated: 6 hours ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Tiger AdvisoryBangalore, IN
    Tiger Advisory provides premier cybersecurity consulting services, helping clients manage risks, strengthen resilience, and achieve compliance in an ever-evolving digital landscape.Our mission is t...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Analyst / Researcher

    Cyber Security Analyst / Researcher

    ConfidentialBengaluru / Bangalore
    We are looking for a Cyber Security Analyst to be a part of the CloudSEK Cyber-Security team.An ideal candidate will demonstrate an aptitude for learning new technologies, evidenced by the ability ...Show moreLast updated: 21 days ago
    • Promoted
    Cyber Threat Investigator

    Cyber Threat Investigator

    MashreqBengaluru, Karnataka, India
    Manage security event monitoring and incident response using SIEM platforms, with preference for Azure Sentinel and ArcSight. Analyze and respond to security events from diverse sources such as fire...Show moreLast updated: 4 days ago
    • Promoted
    Cyber Threat Intelligence (Diversity)- Manager - BLR

    Cyber Threat Intelligence (Diversity)- Manager - BLR

    ConfidentialBengaluru / Bangalore
    Our Client in India is one of the leading providers of risk, financial services and business advisory, internal audit, corporate governance, and tax and regulatory services.Our Client was establish...Show moreLast updated: 21 days ago