Security Consultant-Threat Hunter

Introduction
Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant you will be a key advisor for IBM’s clients analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client’s organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities

• We are seeking a highly skilled and proactive Threat Hunter to join our Security Operations team. The Threat Hunter will play a critical role in identifying analyzing and mitigating potential threats to our client organization’s IT infrastructure. This position requires a deep understanding of cybersecurity advanced analytical skills and the ability to work independently and collaboratively to safeguard our systems.
  Key Responsibilities
  Threat Detection and Analysis:
• Proactively search for threats and indicators of compromise (IoCs) across the organization’s network systems and applications.
• Analyze security data including logs and alerts to identify patterns and anomalies indicative of malicious activities.
• Develop and implement threat-hunting techniques and methodologies to detect sophisticated and emerging threats.
• Incident Response:
• Collaborate with the Incident Response team to investigate and respond to security incidents.
• Provide insights and recommendations to improve incident handling and response procedures.
• Document findings report incidents and assist in the development of post-incident analysis and remediation plans.
• Research and Development:
• Stay current with the latest cybersecurity threats vulnerabilities and trends.
• Research new attack vectors tactics techniques and procedures (TTPs) used by adversaries.
• Develop and test new threat-hunting techniques and tools to enhance the organization’s security posture.
• Collaboration and Communication:
• Work closely with other security team members including SOC analysts security engineers and management to share insights and coordinate defense strategies.
• Prepare and present reports on threat-hunting activities findings and recommendations to stakeholders and executive leadership.
• Continuous Improvement:
• Contribute to the development and refinement of threat-hunting processes and procedures.
• Participate in regular training and professional development to enhance skills and knowledge in cybersecurity.

Required Technical and Professional Expertise

• Minimum of 5 years of experience in cybersecurity with a focus on threat hunting incident response or security operations.
• Hands-on experience with threat-hunting tools and technologies (e.g. SIEM EDR threat intelligence platforms).
• Skills:
• Strong understanding of network protocols operating systems and common attack vectors.
• Proficiency in analyzing and interpreting security data and logs.
• Experience with scripting or programming languages (e.g. Python PowerShell) for automation and analysis.
• Excellent problem-solving skills and the ability to think critically and analytically.
• Strong communication skills with the ability to convey complex technical information to non-technical stakeholders.

Preferred Technical and Professional Expertise

• Bachelor’s degree in Computer Science Information Security or a related field. Relevant certifications (e.g. CISSP CEH GIAC) are a plus.
• Experience with advanced threat-hunting methodologies and frameworks (e.g. MITRE ATT&CK).
• Familiarity with cloud security and emerging technologies.
• Prior experience in a threat-hunting role within a large enterprise or complex environment.