• The Threat Hunting and Intelligence function is responsible for exploring the threat landscape, assessing the impact of adversaries on the organization, activating detection procedures to protect core business as well as serving as an escalation point for escalating incidents from the threat monitoring and triage function.
• Research threats using intelligence sources and determine their impact on clients
• Compile intelligence reports based on specific customer consumption
• Preliminary analysis of security intelligence feeds
• Participate in the Security Incident Management Process/Significant Intelligence Findings Guidelines.
• Collect, analyze and communicate threat information through the intelligence process
• Review daily cyber threat reports and feeds to identify recent and emerging threats
• Participate in hunting activities based on indications of penetration or suspicious anomaly activity based on data alerts or data outputs from different toolkits
• Initial forensic investigation of escalating accidents
• Periodically update, maintain and adjust the use case framework and operating manuals, and provide implementation and tuning instructions for the administrator’s tools for implementation
• Refine and whitelist EDR solutions to eliminate false positives
• Perform IOC scans and blocking when needed
• Strong analytical and problem solving skill
• Experience of TIP, SIEM, SOAR and Vulnerability Assessment techniques
• Experience with offensive security tools and the latest tactics and techniques of threat actors
• Experience in malware analysis, log analysis and digital forensics
• Experience in incident response and treatment
• Experience in designing user manuals and use cases
• Good knowledge of scripting languages such as Python
• Knowledge of the MITER ATT & CK . framework
• Experience in open source intelligence gathering
Technosys is an IT software company with expertise in best quality website and mobile app development, software development, IoT application, blockchain, cryptocurrency, etc.
We provide you with the best quality and cost effective solutions, with quick response. We provide full services of consulting, development and support to our clients. Our professional team and good experiences are here to provide you with world-class software and application development services. Technosys was established to provide pioneering solutions and integrated services to companies and organizations. We were created with a vision to make the process easier, and to provide our clients with a robust strategic approach and optimized, customizable solutions across various business sectors.