Cyber Threat Hunting Analyst

Summary

Join Accenture Federal Services as a Cyber Threat Hunting Specialist and proactively identify and investigate cyber threats within the company network. This role involves conducting threat hunting investigations using internal tools, collaborating with various security teams, and assisting with documentation and metrics. You will analyze log data, document findings, analyze vulnerabilities, understand network architecture, and prioritize risks. Effective communication and collaboration skills are essential. US citizenship is required, along with 4 years of experience in a related role and specific technical skills.

Requirements

• US Citizenship required
• 4 years of experience in Cyber Threat Intel / Threat Hunting related role
• Experience collecting, processing, identifying, and tracking risk associated with threat intel data
• Kusto Query Language (KQL) experience
• Experience analyzing threat intel information to understand technical exploit methods used and risk to a specific environment
• Understanding fundamentals of network and server infrastructure
• Experience Reporting on and tracking remediation/mitigation efforts
• Microsoft Sentinel and Splunk Experience
• System Threat Modeling experience

Responsibilities

• Query and analyze server, workstation, and network log data for evidence of threats
• Document findings and create detailed reports on threat activity
• Analyze vulnerability descriptions and understand related risks at a technical level
• Understand server, workstation, and network architecture
• Ability to perform packet analysis when needed
• Prioritize vulnerabilities based on risk
• Research threat actor behaviors using online tools
• Process and convey technical details clearly and in a range of situations, both in writing and verbally
• Communicate effectively and clearly to leadership with relevant level of detail
• Collaborate with teams within IT, Security, and the company SOC

Preferred Qualifications

• Experience with Microsoft security tools (e.g. O365 Defender)
• MITRE ATT&CK and D3FEND frameworks experience
• SOC experience
• Bachelor's Degree in Cyber Security, or Information Security related field
• Strong organizational skills, including attention to detail
• Excellent communication (written and oral) and interpersonal skills
• Demonstrated experience in writing and presentation skills
• Ability to manage and prioritize multiple objectives with overlapping time constraints
• Proven ability to work independently and as a team member
• Relevant security certifications, including CISSP
• Ability to research and quickly grasp unfamiliar information technologies
• Linux OS, tools, and command line

Benefits

• $84,900 — $160,200 USD
• A wide variety of benefits