No more applications are being accepted for this job
- 5+ years of information security related experience, in areas such as: security operations, incident analysis, incident handling, vulnerability management or testing, system patching, log analysis, intrusion detection, or security device administration.
- In-depth packet analysis skills, core forensic familiarity, incident response skills, and data fusion skills based on multiple security data sources.
- Vulnerability assessment and penetration testing concepts.
- Strong understanding of MITRE ATT&CK framework, cyber threat landscapes, attack vectors and threat actors.
- Relevant information security-related certifications such as ISC2 CISSP, and GIAC GCIH, GCIA, GNFA, GCFE or similar technical certifications are highly desirable.
- Develop and maintain high-quality threat detection rules, queries, and alerts based on identified use cases, threat scenarios, and structured threat intelligence, including MITRE ATT&CK Tactics, Techniques and Procedures (TTPs).
- Leverage the MITRE ATT&CK Framework and other forms of structured threat intelligence approaches to enhance detection analytic capabilities, develop contextualized alerts, and improve overall cyber security posture.
- Provide training and guidance to team members to enhance their understanding of threat detection methodologies, automation techniques, and structured threat intelligence.
Senior Security Engineer - Norfolk, United States - UNUM
