Company Description

ClientSolv Technologies is an IT solution firm with over a decade of experience serving Fortune 1000 companies, public sector and small to medium sized companies. ClientSolv Technologies is a woman-owned and operated company that is certified as a WMBE, 8a firm by the Federal government's Small Business Administration.

 

Job Description

We are seeking a Cyber Security Threat Hunter for a contract-to-hire role in Englewood, CO.  This role will be onsite/in the office and will distinguish, interrupt and suppress threat actors on enterprise networks. You will detect and assess cyber security events and incidents across the enterprise environment.  Additional responsibilities include:  

 

Examine alerts from various security monitoring tools, perform triage & determine scope of threats; escalate as necessary.Develop and analyze dashboards and reports to identify potential threats, suspicious/anomalous activity, malware, etc.Coordinate with End user computing groups that are exhibiting unusual behavior (i.e. excessive firewall denials, Okta logins from unusual geo-locations) to have them assist in troubleshooting/remedying the issues.Use data analysis, threat intelligence, and cutting-edge security technologiesAssist with tickets relating to whitelisting & user internet access by researching the domains being requested for security/reputation, liaising with users for additional details, and passing the tickets along for implementation in the proxiesManage various Proof-of-Concept implementations for threat hunting platforms/tools to evaluate if they would be beneficial for the organization by providing additional visibility into the enterprise environment and increasing incident response time.Provide Tier 2 & Tier 3 support as neededKeep up-to-date with information security news, techniques, and trendsBecome proficient with Ticketing system and workflow managementBecome proficient with third-party threat intelligence tools as required

Qualifications3+ years of experience in Information Security2+ years of experience with the incident response process, including detecting advanced adversaries, log analysis using SIEM, and malware triageExperience with packet analysis and usage of deep packet inspection toolsets.Knowledge and experience working with the Cyber Kill Chain Model, Diamond Model or MITER ATT&CK Matrix.Familiarity with EDR/SOAR/Anomaly detection solutions DesiredPrior experience working with in the following areas: Computer Incident Response Team (CIRT) or  Computer Security Incident Response Center (CSIRC) or Security Operations Center (SOC)Experience with APT/crimeware ecosystems

 

Additional Information

This contract to hire role is located onsite in Englewood, CO.