Description

Summary:

The Cybersecurity Operations Threat Hunt Lead, will use Huntington's enterprise tools to perform threat hunts, and assist in enterprise incident response. He/she will serve as the team lead for the Cybersecurity Operation Threat Hunting Lead role where they are responsible to continue to build the program and lead members on the team. The role works closely with members of the Cybersecurity Operations Center (CSOC), Threat Detection Engineering, Red Team, Purple Team, Insider Threat, Cyber Threat Intelligence.

Duties & Responsibilities:

• Perform hunts in the SIEM and security tools for data artifacts to determine gaps in detections and response

• Conduct advanced malware analysis to extract IOCs and behaviors

• Collaborate with the Huntington’s Cyber Threat Intelligence team on consuming and producing verified IOCs

• Collaborate with the Huntington’s Red Team on developing and testing threat hunting and detection methodologies

• Make recommendations for log and data source tuning and improvements

• Map Threat Hunts towards MITRE TTPs

• Develop dashboards, reports, and detections to automate as much of the repeatable threat hunting activities as possible

• Keep up to date with information security news, techniques, and trends, act as a subject matter expertise on the current cyberthreat landscape

• Validate engagement findings using open-source and proprietary intelligence repositories

• Document and manage hypothesis and hunts using SOAR or SharePoint

• Escalate findings such as suspected incidents, exploitation opportunities and tuning

Basic Qualifications:

• Minimum 8 years in a Incident Response role

• Minimum of 4 years in a Threat Hunting Lead role

• Bachelor's degree in Information Systems or Computer Science - Minimum of 5 years of experience implementing or operating Security Tools (SEIM, DLP, IPS, Anti Malware, Firewalls)

Preferred Qualifications:

• Experience with Splunk, or similar solutions in an enterprise-wide deployment a plus

• Experience in building Threat Hunting Programs

• Experience with Python, Java or PowerShell

• Strong organizational skills

• Excellent communication and customer service skills

• Ability to develop strong partnerships

  Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)

Yes

Workplace Type:

Hybrid

Huntington is an equal opportunity and affirmative action employer and is committed to providing equal employment opportunities for all regardless of race, color, religion, sex, national origin, age, disability, sexual orientation, veteran status, gender identity and expression, genetic information, or any other basis protected by local, state, or federal law.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Agency Statement: Huntington does not accept solicitation from Third Party Recruiters for any position