Threat Hunter

Logo of NBCUniversal

NBCUniversal

πŸ’΅ $130k-$160k
πŸ“Remote - United States

Job highlights

Summary

Join NBCUniversal as a Threat Hunter and proactively identify and analyze emerging threats. You will actively hunt for indicators of compromise and APT tactics, techniques, and procedures. Responsibilities include analyzing large datasets, creating analytical queries, collaborating with team members, and developing security content. This fully remote position requires at least 3 years of cybersecurity experience and expertise in security technologies and analysis frameworks. NBCUniversal offers competitive benefits, including medical, dental, vision insurance, 401(k), paid leave, and tuition reimbursement.

Requirements

  • Minimum 3 years of cybersecurity experience in threat hunting, incident response, digital forensics, cyber intelligence, or related fields
  • Expert knowledge of security technologies and related data sets that enable cyber threat hunt operations including operating system logs, network logs, EDR, cloud environments and others
  • Tactical, operational, and strategic knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and motivations
  • Knowledge of industry recognized security and analysis frameworks (MITRE ATT&CK, Kill Chain, Diamond Model, NIST Incident Response, etc.)
  • Experience in network and host-based analysis and investigation
  • Experience with Splunk Search Processing Language (SPL), LogScale, and Endpoint Detection and Response (EDR) tools or other SIEM technologies and query languages
  • Understanding of complex enterprise networks to include endpoint, network, email, identity management, and administration systems
  • Deep understanding of network and host-based security concepts, including protocols (HTTP, DNS, SMB), operating systems (Windows, Linux, macOS), authentication protocols, and security tools (SIEM, EDR, SOAR)
  • Excellent analytical and problem-solving skills, detail-oriented, and able to communicate process and findings verbally and through reports
  • General understanding of various cloud technologies and the security implications behind them

Responsibilities

  • Actively search through vast datasets, including security event logs, network security logs, endpoint data, and cloud security logs to uncover hidden threats and indicators of compromise (IOCs)
  • Create and refine complex analytical queries used to hunt behavioral TTPs identified through hypothesis generation and informed by threat intelligence
  • Seek input from team members and subject matter experts to refine hunting data and build context for hunts and alerts
  • Innovate hunting query development by leveraging all relevant data sources and resources to perform analysis
  • Create, recommend, and assist with the development of security content resulting from threat hunting
  • Review data from incident writeups, malware reports, and other technical documentation to create hunting opportunities
  • Participate in purple team exercises, working with others to hunt on exercises conducted in coordination with detection and response
  • Write technical threat hunt reports which highlight hunt activities, results, escalations, remediation items, and gaps

Benefits

  • Medical, dental and vision insurance
  • 401(k)
  • Paid leave
  • Tuition reimbursement
  • A variety of other discounts and perks
  • Fully Remote

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Remote Jobs

Please let NBCUniversal know you found this job on JobsCollider. Thanks! πŸ™