Threat hunting – Who Needs Engineers
https://whoneedsengineers.com/wne_live
Software Engineering RecruitmentSun, 27 Oct 2024 00:00:03 +0000en-US
hourly
1 https://wordpress.org/?v=6.6.2https://whoneedsengineers.com/wne_live/wp-content/uploads/2023/06/cropped-wne_logo-3-32x32.pngThreat hunting – Who Needs Engineers
https://whoneedsengineers.com/wne_live
3232Security Analyst
https://whoneedsengineers.com/jobs/cybersecurity/security-analyst-15/
Sun, 27 Oct 2024 00:00:03 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/security-analyst-15/Security Analyst
Job Description:
We are looking for a skilled Security Analyst to take charge of cybersecurity incidents and events at our organization. This role is essential in protecting our systems and ensuring the safety of our customers, partners, and employees. The ideal candidate will work from Wednesday to Saturday, 11:30 AM to 9:30 PM MDT, focusing on maintaining and enhancing our cybersecurity measures. You will be part of the Detection and Response team, which plays a crucial role in identifying potential threats and implementing necessary responses. This position requires a proactive approach to risk assessment and the ability to react swiftly to any security incidents that may arise. As a Security Analyst, you will monitor security events, manage incidents, and collaborate with various teams to improve our overall security posture.
IT Languages:
SPL
KQL
Lucene
The Security Analyst will be responsible for managing and prioritizing cybersecurity events and incidents across the organization’s environment. You will develop and implement new processes aimed at enhancing our monitoring and detection capabilities.:
Monitor the SIEM for alerts related to potential or active threats.;; Field reported security events and escalate incidents as per our incident response plan.;; Assist in threat containment and participate in remediation activities post-incident.;; Prepare investigation reports based on security events and incidents.;; Collaborate with the Threat Intelligence team to stay updated on the global threat landscape.
Spoken Languages:
English
Skillset:
Incident response
SIEM monitoring
Threat hunting
Playbook development
Soft Skills:
Critical thinking
Analytical skills
Attention to detail
Excellent communication skills
Qualifications:
Minimum of two years of experience in a Security Operations Center or Incident Response role.
Hands-on experience with security monitoring and incident response.
Years of Experience:
2
Location:
United States
Job Benefits:
Comprehensive health benefits
Flexible work environment
Professional development opportunities
Generous paid time off
Retirement savings plan
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster an inclusive and collaborative environment where diverse perspectives are valued. Our culture emphasizes teamwork, continuous improvement, and a commitment to delivering exceptional results while maintaining a healthy work-life balance.
Opportunities For Advancement:
Career progression within the security team, Training and certification opportunities, Mentorship programs
Visa Sponsorship:
Not Available
]]>Security Analyst
https://whoneedsengineers.com/jobs/cybersecurity/security-analyst-13/
Thu, 24 Oct 2024 00:00:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/security-analyst-13/Security Analyst
Job Description:
We are in search of a dedicated Security Analyst who will take charge of cybersecurity events and incidents within our organization. This position is essential in ensuring the safety and integrity of our systems, as well as the protection of our customers, partners, and employees. The selected candidate will be required to work on a shift basis from Wednesday to Saturday, from 11:30 AM to 9:30 PM MDT. Your role will be crucial in assessing business risks and taking proactive measures against potential threats. You will be part of the Detection and Response team, which is committed to safeguarding our systems and information through a variety of strategies including Cyber Threat Intelligence, Security Logging, Detection Engineering, and Incident Response. This position offers an opportunity to be at the forefront of cybersecurity and to contribute significantly to our organization's mission.
IT Languages:
SPL
KQL
Lucene
As a Security Analyst, you will be responsible for managing and prioritizing cybersecurity events and incidents. You will assist in the creation and implementation of new processes to enhance monitoring, detection, and mitigation of security threats.:
Monitor SIEM for security events and alerts concerning potential or active threats;; Field security events reported from internal and external teams, escalating incidents as per the incident response plan;; Assist with threat containment and engage in remediation activities during or post-incident;; Utilize incident response experience to contribute to investigation reports;; Keep updated with the global threat landscape through collaboration with the Threat Intelligence team
Spoken Languages:
English
Skillset:
Incident response
Threat hunting
Security monitoring
Cybersecurity frameworks
Soft Skills:
Critical thinking
Analytical skills
Attention to detail
Excellent communication skills
Qualifications:
Minimum two years of experience in a Security Operations Center or Incident Response role
Experience with security monitoring in a cybersecurity environment
Proficient in Security Information and Event Management (SIEM) tools
Hands-on experience in writing complex queries in SPL, KQL, or Lucene
Knowledge of developing and documenting playbooks
Years of Experience:
2
Location:
United States
Job Benefits:
Comprehensive health insurance
Retirement savings plan
Flexible work hours
Professional development opportunities
Wellness programs
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
At our organization, we prioritize inclusivity and diversity, creating an environment where every individual’s contributions are valued. We encourage teamwork and innovation, striving to maintain a workplace that promotes professional growth and a positive work-life balance.
Opportunities For Advancement:
Career growth in cybersecurity specialties, Leadership training programs, Opportunities for cross-departmental collaboration
Visa Sponsorship:
Not Available
]]>Security Analyst
https://whoneedsengineers.com/jobs/cybersecurity/security-analyst-12/
Sun, 20 Oct 2024 20:00:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/security-analyst-12/Security Analyst
Job Description:
We are looking for a skilled Security Analyst to take charge of cybersecurity incidents and events at our organization. This role is essential in protecting our systems and ensuring the safety of our customers, partners, and employees. The ideal candidate will work from Wednesday to Saturday, 11:30 AM to 9:30 PM MDT, focusing on maintaining and enhancing our cybersecurity measures. You will be part of the Detection and Response team, which plays a crucial role in identifying potential threats and implementing necessary responses. This position requires a proactive approach to risk assessment and the ability to react swiftly to any security incidents that may arise. As a Security Analyst, you will monitor security events, manage incidents, and collaborate with various teams to improve our overall security posture.
IT Languages:
SPL
KQL
Lucene
The Security Analyst will be responsible for managing and prioritizing cybersecurity events and incidents across the organization’s environment. You will develop and implement new processes aimed at enhancing our monitoring and detection capabilities.:
Monitor the SIEM for alerts related to potential or active threats.;; Field reported security events and escalate incidents as per our incident response plan.;; Assist in threat containment and participate in remediation activities post-incident.;; Prepare investigation reports based on security events and incidents.;; Collaborate with the Threat Intelligence team to stay updated on the global threat landscape.
Spoken Languages:
English
Skillset:
Incident response
SIEM monitoring
Threat hunting
Playbook development
Soft Skills:
Critical thinking
Analytical skills
Attention to detail
Excellent communication skills
Qualifications:
Minimum of two years of experience in a Security Operations Center or Incident Response role.
Hands-on experience with security monitoring and incident response.
Years of Experience:
2
Location:
United States
Job Benefits:
Comprehensive health benefits
Flexible work environment
Professional development opportunities
Generous paid time off
Retirement savings plan
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster an inclusive and collaborative environment where diverse perspectives are valued. Our culture emphasizes teamwork, continuous improvement, and a commitment to delivering exceptional results while maintaining a healthy work-life balance.
Opportunities For Advancement:
Career progression within the security team, Training and certification opportunities, Mentorship programs
Visa Sponsorship:
Not Available
]]>Security Analyst
https://whoneedsengineers.com/jobs/cybersecurity/security-analyst-9/
Tue, 08 Oct 2024 13:05:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/security-analyst-9/Security Analyst
Job Description:
Join a forward-thinking organization that is at the forefront of digitalizing the healthcare industry. As a Security Analyst, you will play a crucial role in safeguarding our IT systems and data. Your expertise will help us navigate the complexities of IT security while contributing to the health sector, which is vital for society. You will be involved in advising colleagues on various aspects of IT security, supporting projects with a focus on security, and managing our Endpoint Protection platform. Your responsibilities will also include evaluating and monitoring security incidents, optimizing incident handling processes, and conducting threat hunting activities. This position offers a unique opportunity to make a significant impact in a rapidly evolving field, ensuring that our digital health solutions remain secure and reliable.
IT Languages:
Python
Java
C++
As a Security Analyst, you will be responsible for a variety of critical tasks that enhance our IT security posture.:
Advise team members on IT security best practices;; Support IT security projects across the organization;; Administer and enhance the Endpoint Protection platform;; Evaluate and track security incidents;; Optimize processes for incident handling;; Perform threat hunting to identify vulnerabilities
Spoken Languages:
English;; German
Skillset:
IT Security Management
Endpoint Protection
Incident Response
Threat Hunting
Security Analysis
Soft Skills:
Team player
Strong analytical skills
Initiative
Consultative mindset
Self-motivated
Qualifications:
Degree in Computer Science or a related field
Experience in Security Management
Knowledge of Endpoint Protection/EDR/XDR technologies
Familiarity with security analysis and developing security measures
Understanding of IT security norms and regulations such as ISO 27001, NIST 800, GDPR
Certifications in IT Security or Forensics (e.g., GCFE, GBFA, GCFA, GREM, OSCP) are a plus
Years of Experience:
5
Location:
Germany
Job Benefits:
Flexible work arrangements including remote options
Personal development opportunities
Collaborative company culture
39-hour work week with flexible hours
30 days of vacation plus additional days off
Health and wellness programs
Modern technology and equipment
Comprehensive benefits package including transportation tickets and childcare subsidies
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster a collaborative and innovative environment where teamwork is highly valued. Our employees enjoy a supportive atmosphere that encourages professional growth and personal well-being.
Opportunities For Advancement:
Career development programs, Continuous learning opportunities, Mentorship programs
Visa Sponsorship:
Available
]]>Security Analyst
https://whoneedsengineers.com/jobs/cybersecurity/security-analyst-8/
Tue, 08 Oct 2024 12:25:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/security-analyst-8/Security Analyst
Job Description:
Join us in the vital field of health IT as a Security Analyst, where you'll play a crucial role in safeguarding the digital landscape of healthcare. As we embark on a journey to digitalize and connect the essential aspects of life—healthcare—this position offers a unique opportunity to contribute to a meaningful cause. In this role, you'll be advising colleagues on IT security matters, supporting various projects with a focus on enhancing security measures, and managing our Endpoint Protection platform. Your expertise will be pivotal in assessing and tracking security incidents, optimizing incident handling processes, and leading threat hunting initiatives. If you are passionate about IT security and keen on making a significant impact in the health sector, we invite you to apply.
IT Languages:
Python
Java
SQL
As a Security Analyst, your responsibilities will encompass a wide range of tasks aimed at ensuring the integrity and security of our IT systems in the healthcare domain.:
Advise colleagues on various aspects of IT security;; Support projects with a focus on IT security;; Administer and enhance our Endpoint Protection platform;; Evaluate and monitor security incidents;; Optimize processes related to incident handling;; Lead threat hunting activities
Spoken Languages:
English;; German
Skillset:
IT Security Management
Incident Response
Threat Hunting
Endpoint Protection
Security Analysis
Compliance Knowledge
Soft Skills:
Team player
Analytical thinking
Proactive
Consultative mindset
Self-motivated
Qualifications:
Degree in Computer Science or a related field
Relevant experience in IT security
Strong background in Security Management
Familiarity with Endpoint Protection/EDR/XDR technologies
Experience in conducting security analyses and developing security measures
Knowledge of IT security standards and regulations such as ISO 27001, NIST 800, and GDPR
Certifications in IT security or forensics are a plus
Years of Experience:
5
Location:
Germany
Job Benefits:
Future-oriented industry
Flexible working conditions including remote work
Personal development opportunities
Supportive team environment
Wellness programs
Modern technology and equipment
Competitive salary and benefits package
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We foster a collaborative and innovative work environment where teamwork is valued. Employees are encouraged to grow both personally and professionally, with ample opportunities for learning and development. A healthy work-life balance is essential, and we prioritize employee well-being through various health initiatives.
Opportunities For Advancement:
Career development programs, Access to training and certifications, Opportunities for promotions within the organization
Visa Sponsorship:
Available
]]>Security Analyst
https://whoneedsengineers.com/jobs/cybersecurity/security-analyst-7/
Tue, 08 Oct 2024 11:45:02 +0000https://whoneedsengineers.com/wne_live/jobs/jobs-categories/security-analyst-7/Security Analyst
Job Description:
Join a forward-thinking organization dedicated to the digital transformation of healthcare. As a Security Analyst, you will play a crucial role in advising colleagues on all aspects of IT security while supporting various projects with a focus on safeguarding our digital infrastructure. Your responsibilities will include managing and enhancing our Endpoint Protection Platform, assessing and responding to security incidents, and optimizing incident handling processes. You will also be responsible for threat hunting to proactively identify vulnerabilities and threats. This position offers a unique opportunity to contribute to the health sector while advancing your career in IT security.
IT Languages:
Python
Java
SQL
As a Security Analyst, you will engage in a range of security-related tasks aimed at protecting our organization’s digital assets.:
Advise and consult colleagues on IT security matters;; Support security-focused projects and initiatives;; Administer and enhance the Endpoint Protection Platform;; Evaluate and manage security incidents;; Streamline the incident handling process;; Conduct threat hunting activities to identify potential risks
Spoken Languages:
English;; German
Skillset:
IT security management
Endpoint Protection
Security analysis
Incident response
Threat hunting
Soft Skills:
Team player
Analytical thinker
Proactive
Strong communicator
Service-oriented
Qualifications:
Degree in Computer Science or a related field
Relevant experience in IT security management
Familiarity with Endpoint Protection, EDR, and XDR technologies
Experience in conducting security analyses and developing security measures
Knowledge of IT security standards and regulations such as ISO 27001, NIST 800, and GDPR
Certifications in IT security or forensics are highly desirable
Years of Experience:
5
Location:
Germany
Job Benefits:
Flexible working hours with options for remote work
Technical equipment provided for efficient home office setup
Professional and personal development opportunities
Collaborative work environment
39-hour work week with 30 days of vacation plus additional days off
Health management programs and wellness initiatives
Competitive salary with additional benefits like company tickets and sabbatical options
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
Our company fosters a culture of collaboration and innovation, where teamwork is highly valued, and employees are encouraged to share ideas and support one another. We prioritize a positive work environment that promotes well-being and professional growth, ensuring our team members feel appreciated and engaged.
Opportunities For Advancement:
Professional development programs, Mentorship opportunities, Career growth within the IT security domain
At our organization, we focus on creating reliable financial markets driven by our dedicated team. We strive to empower our employees to tackle challenging problems collaboratively, as the impact of our work is significant. Our company provides the essential financial infrastructure that supports the global economy. As a prominent provider of market infrastructure and tradable products, we deliver innovative trading, clearing, and investment solutions to market participants worldwide. As a Cybersecurity Threat Management Intern, you will gain valuable experience by engaging with a diverse group of professionals across various departments. This role offers a unique opportunity to apply your skills in a real-world setting while enhancing your understanding of Exchange technology and operations through our extensive Options Institute courses. Our internship program is built on three foundational pillars: development, education, and networking. We aim to provide each intern with meaningful work experience that promotes academic, professional, and personal growth. Ideal candidates will demonstrate versatility, eagerness, and the ability to thrive in a fast-paced, high-pressure financial and technical environment. Our hybrid work model allows interns to work two days remotely and three days in the office each week at our state-of-the-art locations in Chicago, Kansas City, and New York City. To qualify for this internship, applicants must be currently enrolled in a university or college program and must not be scheduled to graduate before December of the internship year. The internship duration runs from June to August, concluding with a final presentation and a retreat. The Cyber Threat Management Intern position is designed to expose you to a variety of functions, tools, and activities centered around identifying and responding to cybersecurity incidents. You will be involved in essential tasks that offer hands-on experience with SIEM, SOAR, EDR, BAS, and Threat Hunting. Collaborating with members of the Cyber Security Team, as well as Networking Engineering and Infrastructure teams, you will play a vital role in triaging and resolving cybersecurity challenges.
IT Languages:
Python
Java
C++
SQL
As a Cybersecurity Threat Management Intern, your role will involve a variety of responsibilities that will enhance your learning experience while contributing to our cybersecurity operations.:
Conduct threat hunting and simulations based on current security threats;; Create comprehensive reports for both technical and non-technical audiences;; Develop scripts or tools to improve the incident response processes;; Stay informed about the latest cybersecurity threats and technologies;; Update procedures and methodologies to enhance the incident response process;; Assist the incident response team with daily operational activities
Spoken Languages:
English;; Spanish
Skillset:
SIEM
SOAR
EDR
BAS
Threat Hunting
Soft Skills:
Teamwork
Communication
Adaptability
Problem-solving
Critical thinking
Qualifications:
Undergraduate student majoring in Information Security, Cyber Security, Computer Science, or related field
Strong interest in learning and enthusiasm for cybersecurity
Basic understanding of security concepts and best practices
Knowledge of common security threats and vulnerabilities
Familiarity with common ports and services
Basic networking concepts knowledge
Understanding of Windows and Linux operating systems
Proficient with Microsoft Office products
Years of Experience:
0
Location:
United States
Job Benefits:
Competitive compensation
Flexible hybrid work environment
401(k) matching
Complimentary in-office lunch
Free coffee and snacks
Monthly networking events and happy hours
Support and community through Associate Resource Groups
Working Conditions:
Hybrid
Employment Type:
Internship
Company Culture:
We are committed to fostering a diverse and inclusive workplace where every employee has an equal opportunity to thrive. Our focus is on collaboration, innovation, and a shared passion for solving complex challenges. We celebrate diverse perspectives and prioritize the development of our staff through leadership programs and career growth opportunities.
Opportunities For Advancement:
Potential for full-time employment after internship, Access to mentorship programs, Opportunities for skill development and training
Join our Group Security department where you will play a pivotal role in executing our information security strategy. As a key service provider, our department is dedicated to safeguarding information assets by ensuring their safety, integrity, confidentiality, and availability in accordance with regulatory requirements and international standards. As a Threat Detection Engineer, you will be at the forefront of enhancing our threat detection capabilities through collaboration with various teams including CERT, SOC, Threat Intelligence, and Cyber Analytics. Your expertise in threat modeling will be crucial as you work on defining methodologies, evaluating threats, and classifying detection maturity. You will actively engage in projects that aim to develop new service capabilities and will contribute to the implementation and delivery of innovative security solutions.
IT Languages:
Python
Bash
Perl
As a Threat Detection Engineer, you will be responsible for supporting the definition and orchestration of a comprehensive Threat Modeling program.:
Research emerging threats and vulnerabilities;; Perform gap analysis and curate threat detection use cases;; Create and maintain a threat detection library;; Collaborate with threat hunters during purple team exercises;; Develop advanced detection logics and algorithms;; Conduct in-depth threat assessments for critical assets;; Participate in threat landscape definition activities
Spoken Languages:
English;; German
Skillset:
SIEM
EDR
Cloud Security
Threat Hunting
Threat Modeling
Soft Skills:
Problem-solving
Adaptability
Team collaboration
Qualifications:
Solid IT Security technical background
Broad knowledge of IT and Information Security technologies
Understanding of cyber threats and detection measures
Experience with MITRE ATT&CK framework
Years of Experience:
5
Location:
Frankfurt, Hesse, Germany, EU
Job Benefits:
Competitive salary
Health insurance
Professional development opportunities
Flexible working hours
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
Our company fosters a collaborative and innovative environment where team members are encouraged to share ideas and contribute to the overall security posture of the organization. We value continuous learning and provide ample opportunities for professional growth.
Opportunities For Advancement:
Career development programs, Access to training and certifications, Potential for leadership roles
As a Security Analyst operating around the clock, you will play a pivotal role in safeguarding our clients against cyber threats. Your daily responsibilities will involve actively managing security incidents that arise in customer environments, providing immediate responses, and engaging directly with clients to address security incidents effectively. Your role will be hands-on, focusing on bespoke solutions for our large customers where your expertise can make a significant impact. We envision our 24×7 candidates as future leaders within our Security Operations Center (SOC), where they may transition to roles such as incident responders or consultants, advising our clients on best practices in cybersecurity.
IT Languages:
Python
JavaScript
The core responsibilities of this role revolve around managing and responding to security incidents, collaborating with clients, and performing in-depth analysis to improve security posture.:
Monitor and respond to security incidents in real-time;; Conduct reverse engineering and malware analysis;; Engage in threat hunting and detection engineering;; Provide guidance and support to clients during incidents;; Develop and implement security measures for customer environments
Spoken Languages:
English;; Swedish
Skillset:
TCP/IP
Networks
OSI model
EDR
SIEM
SOAR
Malware analysis
Threat hunting
Soft Skills:
Problem-solving
Effective communication
Adaptability
Collaboration
Attention to detail
Qualifications:
Swedish citizenship
Customer-oriented mindset
Excellent teamwork skills
Minimum 5 years experience in cybersecurity or related field
Strong understanding of TCP/IP, networks, and the OSI model
Experience with EDR, SIEM, and SOAR technologies
Familiarity with the Microsoft security ecosystem and relevant certifications like Security+, CySA+, or CISSP
Years of Experience:
5
Location:
Malmo, Skåne County, Sweden, EU
Job Benefits:
Opportunities for professional development through workshops and training
Chance to work with leading organizations in Sweden
Collaborative and supportive team environment
Career growth opportunities
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
Our company culture is defined by a commitment to learning and collaboration. We prioritize the personal and professional development of our employees, encouraging them to share knowledge and support one another. We believe that a positive and engaging work environment fosters innovation and success.
Opportunities For Advancement:
Potential transition to day-time SOC roles, Opportunities to take on consulting positions, Access to advanced training programs