Cfc Cti Senior Cyber Threat Hunter
hace 1 día
Company Description
Experian is the world's leading global information services company.
During life's big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers - we empower consumers and our clients to manage their data with confidence.
We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.
We have 20,000 people operating across 44 countries and every day we're investing in new technologies, talented people, and innovation to help all our clients maximize every opportunity.
**Job Description**:
Experian Cyber Fusion Center (CFC) is seeking a Senior Cyber Threat Hunter to be part of a global Cyber Threat Hunting (CTH) team that promotes timely and actionable threat intelligence information.
This is an incredible opportunity to join a world-class organization and join a global team of highly skilled and innovative people to help us stay ahead of adversaries.
The CTH team focuses on defending against emerging threats, supporting cyber investigations, and delivering situational awareness to the business.
The Senior Cyber Threat Hunter serves as a member of the CTH team.
Perform all aspects of cyber threat hunting from preparation, hunting, and reporting to include:
- Develop or contribute to developing core foundational components of the Cyber Threat Hunting program
- Dedicate primary daily focus to hunt the Experian environment for threats and anomalies with intelligence gathered from Cyber Threat Intelligence sources
- Brief findings to senior level management, technical and non-technical leaders, as well as cybersecurity, risk, human resources, legal, and information technology practitioners
- Conduct proactive and targeted hunting activities to identify and mitigate advanced threats that have bypassed traditional security controls with intelligence gathered from Cyber Threat Intelligence (CTI) sources, incident response, and forensic teams
- Develop content that will drive CFC monitoring and detection (use cases, priority, actionable and relevant intelligence) this includes the creation of CTH products to describe and detail analysis
- Develop processes and procedures for tactical information collection, analysis, processing, production, and dissemination
- Develop greater holistic insight and adversarial mapping to MITRE ATT&CK tactics and techniques, Common Vulnerabilities and Exposures (CVEs), Indicators of Attacks (IOAs) / Indicators of Compromise (IOCs)
- Ensure assignments are completed in an efficient and effective fashion; follow all processes and procedures outlined in the Wiki, SharePoint, and MS Teams
- Closely monitor critical vulnerabilities, threat actors, threat actor campaigns, threat actor TTPs, and changes in the cyber threat landscape
- Save past "hunts" or queries for tracking and collaboration purposes (saved work can transform one-time hunts into persistent queries)
- Develop and maintain a repository of SOPs, playbooks, and checklists for hunting that aligns with MITRE ATT&CK techniques and the availability of current data
- Assist with Incident Response analysis and forensic investigations when requested
**Qualifications**:
- 8+ years of experience or equivalent skill level in a technical security role with a focus on threat hunting, threat intelligence, incident response, digital forensics, or related areas
- In-depth knowledge of advanced threat actors, attack techniques, and malware analysis
- Strong understanding of incident response processes, specifically with detection, response, and containment
- Working knowledge of the Cyber Kill Chain Model, Diamond Model, Course of Action Matrix, and MITRE ATT&CK Matrix and how each methodology can be applied to cyber threat hunting
- Extensive experience in detecting advanced attack methodologies via log analysis and/or endpoint tools, as well as event management tools, such as ArcSight, Splunk, or QRadar
- Deep understanding of and ability to conduct packet analysis with deep packet inspection toolsets to support threat identification
- Experience with at least one common scripting or programming language, such as Python, JavaScript, and/or PowerShell
- Strong understanding of the Windows, Linux / *NIX, and macOS operating systems, as well as command-line tools
- Strong knowledge of common tactics, techniques, and procedures used by threat actors and the tools and methods to detect and find them
- Capable of developing detection signatures (YARA, SNORT)
Additional Information
Our benefits include: Medical, life and dental insurance, Asociación Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.
LI-GJ1
Experian Careers - Creating a better tom
-
Cfc Cti Cyber Threat Hunter
hace 1 semana
San Francisco, Heredia, Costa Rica Experian A tiempo completoFull-timeEmployee Status: RegularRole Type: HybridDepartment: Legal & ComplianceSchedule: Full TimeShift: Day Shift**Company Description**:Experian is the world's leading global information services company.During life's big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers - we...
-
Senior Cyber Threat Intelligence Specialist
hace 23 horas
San Francisco, Heredia, Costa Rica Experian A tiempo completoJob DescriptionThe Experian Cyber Fusion Center (CFC) is seeking a Senior Cyber Threat Hunter to join our global Cyber Threat Hunting (CTH) team. This role promotes timely and actionable threat intelligence information.This is an exceptional opportunity to join a world-class organization and collaborate with a global team of highly skilled and innovative...
-
Senior Threat Detection Engineer
hace 1 semana
San Francisco, Heredia, Costa Rica Experian A tiempo completoCompany DescriptionAbout us, but we'll be briefExperian is the world's leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society.We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for.In addition, for the last five years we've been...
-
Global Cyber Threat Analyst
hace 4 días
San Francisco, Heredia, Costa Rica Experian A tiempo completoResponsibilities and Requirements:We are seeking a highly motivated Senior Cyber Security Analyst to join our Global Security team at our Costa Rica facility. The ideal candidate will have experience working within a Security Operations Center or Cyber Security Incident Response Team, with a strong understanding of common Operating Systems, Networking, and...
-
Senior Cyber Incident Response Coordinator
hace 3 semanas
San Francisco, Heredia, Costa Rica Ibm A tiempo completo**Introduction**As an IBM Cloud Senior Cyber Incident Response Coordinator, you will coordinate with IBM CSIRT, the Security Operations Center (SOC), and other security teams to investigate and recover from cyber related threats / incidents.You will oversee the Root Cause Analysis process and ensure preventative actions are in place with the responsible...
-
Cybersecurity Threat Manager
hace 7 días
San Francisco, Heredia, Costa Rica Re:Sources Global A tiempo completo**About Re:Sources Global**We are a global team dedicated to information security and incident response. As a Senior Associate, Information Security, you will be responsible for the containment, remediation, and closure of cyber security incidents.This role requires technical expertise and strong communication skills to work closely with legal, data privacy,...
-
Cti Enterprise Command Center
hace 3 semanas
San Francisco, Heredia, Costa Rica Citi A tiempo completoThe Infrastructure Group Manager is a senior management-level position responsible for managing and guiding a team that ensures efficient and effective Citi infrastructure in coordination with the Technology Team.The overall objective of this role is to use infrastructure technology knowledge and identified policies to process data, resolve issues and...
-
Cyber Incident Coordinator for IBM Cloud
hace 6 días
San Francisco, Heredia, Costa Rica Ibm A tiempo completo**Job Responsibilities**As a Senior Cyber Incident Response Coordinator at IBM, you will be responsible for leading the coordination of incident response efforts, working closely with our Security Operations Center (SOC) and other security teams within the organization.This includes overseeing the root cause analysis process, ensuring preventative actions...
-
Senior Cloud Security Response Manager
hace 6 días
San Francisco, Heredia, Costa Rica Ibm A tiempo completo**About the Role**We are seeking a highly skilled Senior Cyber Incident Response Coordinator to join our team at IBM. As a key member of our Cybersecurity group, you will play a critical role in managing cyber incidents across IBM Cloud, working closely with our Security Operations Center (SOC) and other security teams within the organization.This position...
-
Cyber Security Operations Specialist
hace 4 días
San Francisco, Heredia, Costa Rica Experian A tiempo completoJob Description:Experian is a global leader in providing information solutions to organizations and consumers. We are seeking a highly motivated Senior Cyber Security Analyst to join our Global Security team at our facility.The ideal candidate will have experience working within a Security Operations Center or Cyber Security Incident Response Team, with a...
-
Senior Cyber Analyst Mergers And Acquisitions
hace 1 semana
San Francisco, Heredia, Costa Rica Sysco Costa Rica A tiempo completoThis role is responsible for executing Cybersecurity M&A due diligence and leading cyber integration planning, coordination, and reporting while partnering across multiple Cyber, business, and technology cross function teams.**Requirements**:- Execute Cybersecurity M&A due diligence activities partnering with business and technology deal teams to identify...
-
Cyber Incident Response Delegate
hace 3 días
San Francisco, Heredia, Costa Rica Ibm A tiempo completo**Introduction****Your Role and Responsibilities**- Act as a delegate to the IBM Cloud CISO by overseeing cyber incidents in collaboration with IBM CSIRT, Legal, and other various security teams within IBM.- Provide final approvals for the Root Cause Analysis performed post-incident and ensure preventative actions are in place with the responsible parties.-...
-
Senior Information Security Associate
hace 7 días
San Francisco, Heredia, Costa Rica Re:Sources Global A tiempo completo**Job Overview**We are seeking a highly skilled Senior Associate, Information Security to join our team at Re:Sources Global. As a member of our incident response team, you will be responsible for containing, remediating, and closing cyber security incidents.**Key Responsibilities**Develop and manage incident response programs.Collaborate with legal, data...
-
Senior Threat Detection Specialist
hace 6 días
San Francisco, Heredia, Costa Rica Tebra A tiempo completoAbout the Job:We are looking for a talented Senior Security Incident Responder to join our team. As a key member of our security team, you will play a critical role in protecting our internal and external customers from cyber threats.Your Key Responsibilities:Investigate security incidents using log data, networking tools, and big data search engines.Create...
-
Cyber Incident Response Team Lead
hace 6 días
San Francisco, Heredia, Costa Rica Experian A tiempo completoCompany OverviewExperian is a leading global information services company, empowering consumers and clients to manage their data with confidence.We help individuals take financial control, businesses make informed decisions, lenders lend responsibly, and organizations prevent identity fraud.The Global Security Office (EGSO) / Global Cyber Incident Response...
-
Credit Assessment Expert
hace 19 horas
San Francisco, Heredia, Costa Rica Recluta Talent Hunter A tiempo completoJob RoleThe Credit Risk Analyst will play a critical role in supporting the evaluation and monitoring of customer creditworthiness at Recluta Talent Hunter. This involves analyzing financial data, preparing credit assessments, and ensuring compliance with credit policies. The successful candidate will have excellent analytical and communication skills, as...
-
Risk Management Specialist
hace 23 horas
San Francisco, Heredia, Costa Rica Recluta Talent Hunter A tiempo completoJob DescriptionWe are seeking a highly skilled Credit Risk Analyst to join our team at Recluta Talent Hunter. In this role, you will be responsible for evaluating and monitoring customer creditworthiness, analyzing financial data, and preparing credit assessments. You will also ensure compliance with credit policies and collaborate with other teams to...
-
Cybersecurity Incident Response
hace 7 días
San Francisco, Heredia, Costa Rica Re:Sources Global A tiempo completoCompany Description**Job Description**:The Senior Associate, Information Security is part of a global team and is responsible for incident response of cyber security incidents that are associated with our businesses, clients, and vendors; is technically skilled and ensures incident containment, remediation, and closure.This individual will be expected to...
-
Financial Data Analyst
hace 1 día
San Francisco, Heredia, Costa Rica Recluta Talent Hunter A tiempo completoJob SummaryAt Recluta Talent Hunter, we are seeking a skilled Credit Risk Analyst to support our team in evaluating and monitoring customer creditworthiness. This role involves analyzing financial data, preparing credit assessments, and ensuring compliance with credit policies.Main Responsibilities- Collect and review customer financial information,...
-
Cyber Security Operations Analyst Intermediate
hace 1 semana
San Francisco, Heredia, Costa Rica Equifax A tiempo completo**Cyber Security Operations Analyst**As a Security Operation Center Analyst, you will be required to respond to security incidents, create and maintain documentation and participate in security investigations.You will be able to work with various teams across the organization and around the world and will need to support the Security Operations Center...