Description

Summary:

The Cybersecurity Operations Threat Hunt Lead, will use Huntington's enterprise tools to perform threat hunts, and assist in enterprise incident response. He/she will serve as the team lead for the Cybersecurity Operation Threat Hunting Lead role where they are responsible to continue to build the program and lead members on the team. The role works closely with members of the Cybersecurity Operations Center (CSOC), Threat Detection Engineering, Red Team, Purple Team, Insider Threat, Cyber Threat Intelligence.

Duties & Responsibilities:

Perform hunts in the SIEM and security tools for data artifacts to determine gaps in detections and responseConduct advanced malware analysis to extract IOCs and behaviorsCollaborate with the Huntington’s Cyber Threat Intelligence team on consuming and producing verified IOCsCollaborate with the Huntington’s Red Team on developing and testing threat hunting and detection methodologiesMake recommendations for log and data source tuning and improvementsMap Threat Hunts towards MITRE TTPsDevelop dashboards, reports, and detections to automate as much of the repeatable threat hunting activities as possibleKeep up to date with information security news, techniques, and trends, act as a subject matter expertise on the current cyberthreat landscapeValidate engagement findings using open-source and proprietary intelligence repositoriesDocument and manage hypothesis and hunts using SOAR or SharePointEscalate findings such as suspected incidents, exploitation opportunities and tuning 

Basic Qualifications:

Minimum 8 years in a Incident Response roleMinimum of 4 years in a Threat Hunting Lead roleBachelor's degree in Information Systems or Computer Science - Minimum of 5 years of experience implementing or operating Security Tools (SEIM, DLP, IPS, Anti Malware, Firewalls)

Preferred Qualifications:

Experience with Splunk, or similar solutions in an enterprise-wide deployment a plusExperience in building Threat Hunting ProgramsExperience with Python, Java or PowerShellStrong organizational skillsExcellent communication and customer service skillsAbility to develop strong partnerships

Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)

Yes

Workplace Type:

Hybrid

Huntington is an equal opportunity and affirmative action employer and is committed to providing equal employment opportunities for all regardless of race, color, religion, sex, national origin, age, disability, sexual orientation, veteran status, gender identity and expression, genetic information, or any other basis protected by local, state, or federal law.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Agency Statement: Huntington does not accept solicitation from Third Party Recruiters for any position