Cyber Threat Investigator

Posted 04 Sep 2020

Bratislavsky kraj - all, Bratislavsky kraj - Slovakia

Req Id 198471

Details

A career in our company is an ongoing journey of discovery: our 52,000 people are shaping how the world lives, works and plays through next generation advancements in healthcare, life science and performance materials. For more than 350 years and across the world we have passionately pursued our curiosity to find novel and vibrant ways of enhancing the lives of others.A career in our company is an ongoing journey of discovery: our 52,000 people are shaping how the world lives, works and plays through next generation advancements in healthcare, life science and performance materials. For more than 350 years and across the world we have passionately pursued our curiosity to find novel and vibrant ways of enhancing the lives of others.


Job Description :

 

The Threat hunting Team is seeking a motivated individual with strong technical competency that will research and implement detection measures

using data from a wide spectrum of sources. The candidate will also perform opportunistic threat hunting and forensic analysis when required during incidents.

 

Qualifications:

 

  • Prior experiences in SOC are a must
  • Network traffic analysis and host based log analysis
  • Comprehensive understanding of enterprise Windows security (Active Directory)
  • Static and Dynamic malware analysis
  • Disk and Memory forensics
  • Practical knowledge in at least one scripting or development language (e.g. PowerShell or Python)
  • Strong written and verbal communication skills
  • Strong understanding of common enterprise technologies

 

Responsibilities:

 

  • Use Network and Host Based data to drive detection, monitoring, and response capabilities
  • Create detection analytics based off the MITRE ATT&CK Framework and other security frameworks
  • Perform unique research on adversarial Tools, Techniques, and Procedures (TTPs)
  • Scout Dark Web and gather intel from various Cybersecurity related sources
  • Work closely with our Threat IQ Vendor on securing company´s IP
  • Be an important part of the SOC and provide assistance to the Incident Response team in response on incidents by analyzing host behavior and network traffic
  • Perform static and dynamic malware analysis to feed Indicators of Compromise into the Incident Response process

 

What we offer: In our company, there are always opportunities to break new ground. We empower you to fulfil your ambitions, and our diverse businesses offer various career moves to seek new horizons. We trust you with responsibility early on and support you to draw your own career map that is responsive to your aspirations and priorities in life. Join us and bring your curiosity to life!

Apply Now

Redirect

You have accessed emdserono.ca, but for users from your part of the world, we originally designed the following web presence merckgroup.com

Let's go

Share Disclaimer

By sharing this content, you are consenting to share your data to this social media provider. More information are available in our Privacy Statement