Hiring.Camp

Cyber Security Analyst Leads – Cyber Threat Hunting

Fis

·

2 days ago

Location
US FL JAX 347, United States of America
Type
Full-time
Department
Human Resources
Seniority
Lead
Closing date
Today
Source
Workday

Description

Job Description

FIS Management Services, LLC seeks Cyber Security Analyst Leads – Cyber Threat Hunting in Jacksonville, FL to serve as a technical lead within FIS Cyber Threat Hunting (CTH) program, driving proactive, hypothesis-based threat hunts across endpoint, network, identity and cloud telemetry to uncover stealthy adversary activity leading to reductions in attack dwell time in the FIS environment. Execute complex investigations using enterprise level EDR and SIEM platforms, correlate multi-source evidence and rapidly scope, contain and support remediation for incidents including malware, credential compromise and unauthorized access while clearly documenting hunt outcomes and investigative conclusions. Translate threat intelligence and adversary TTPs into high-fidelity behavioral analytics mapped to frameworks such as MITRE ATT&CK, and you will partner with the Security Operations Center, Penetration Testing Teams and Detection Engineering stakeholders to operationalize successful hunts into durable detections and improved response playbooks. Automate and scale hunting and investigative workflows through scripting languages (PowerShell/BASH), enrichment and data analysis to improve speed, consistency and signal quality. Lead threat hunting efforts in newly acquired or integrating M&A environments, where you will be required to rapidly assess unfamiliar architectures, establish baselines, and identify inherited risk and latent compromise. Hunt for pre- and post-acquisition adversary activity while informing integration and risk-reduction strategies. 

REQUIREMENTS: Bachelor’s degree or foreign equivalent in Computer Science, Cyber Security, Digital Forensics, or related field and seven (7) years of progressively responsible experience in the job offered or a related occupation: investigating endpoint-based security threats using enterprise Endpoint Detection and Response (EDR) solutions, including analysis of behavioral detections, process execution trees, command-line activity, and persistence mechanisms to identify and contain malicious activity; developing, tuning, and investigating security detections using SIEM platforms in an enterprise environment, including analysis of authentication logs, endpoint telemetry, network events, and cloud audit logs; supporting cybersecurity incident response activities, including triage, scoping, containment, and remediation of incidents including malware infections, credential compromise, and unauthorized access; utilizing scripting languages including Python, PowerShell, and Bash to automate security workflows, analyze security data, enrich security alerts, or support incident investigations; and consuming and applying threat intelligence, including indicators of compromise (IOCs), adversary tactics and techniques, and opensource intelligence, to enhance security detections and investigations. In the alternative, the employer will accept a Master’s degree in the above listed fields and five (5) years of experience in the above listed skills.  Telecommuting and/or working from home may be permissible pursuant to company policies.

QUALIFIED APPLICANTS:  Please apply directly through our website by clicking on “Apply Now.”


Privacy Statement

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

EEOC Statement

FIS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, genetic information, national origin, disability, veteran status, and other protected characteristics. The EEO is the Law poster is available here supplement document available here


For positions located in the US, the following conditions apply. If you are made a conditional offer of employment, you will be required to undergo a drug test. ADA Disclaimer: In developing this job description care was taken to include all competencies needed to successfully perform in this position. However, for Americans with Disabilities Act (ADA) purposes, the essential functions of the job may or may not have been described for purposes of ADA reasonable accommodation. All reasonable accommodation requests will be reviewed and evaluated on a case-by-case basis.

Sourcing Model

Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass

Skills

PythonCybersecurityPenetration TestingSIEM

Similar Jobs

30

Cyber Security Analyst

Rs Jaggaer · Belgrade, RS

2 days ago

Cyber Security Analyst

Caci · BYS CHANTILLY VA, United States of America · Onsite

3 days ago

Cyber Security Analyst

Barclays · Knutsford, Radbroke Hall, United Kingdom

3 days ago

Cyber Security Analyst

Boeing · GBR - Bristol, UK, United Kingdom · Onsite

4 days ago

Cyber Security Analyst

Low Carbon Contracts Company · Birmingham, England, United Kingdom; Leeds, England, United Kingdom

4 days ago

Cyber Security Analyst

Boeing · GBR - Bristol, UK, United Kingdom · Onsite

4 days ago

Cyber Security Analyst

Boeing · GBR - Bristol, UK, United Kingdom · Onsite

4 days ago

Cyber Security Analyst

Tgguk · Liverpool, UK

5 days ago

Analyst, Cyber Security

Brookfield Renewable · Gatineau, QC, Canada

6 days ago

Cyber Security Analyst

Booz Allen Hamilton · USA, IN, Indianapolis (8899 E 56th St), United States of America +1

1 week ago

Cyber Security Analyst

ScriptPro · Mission, KS

1 week ago

Cyber Security Analyst

BROE Group and it's managed affiliates · Denver, CO, USA

1 week ago

Cyber Security Analyst

Leidos · 2019 DISA HQ Fort George G. Meade MD, United States of America

1 week ago

Cyber Security Analyst

Booz Allen Hamilton · USA, IN, Indianapolis (8899 E 56th St), United States of America

1 week ago

Cyber Security Analyst

Flsmidth · Bucharest, Romania · Remote, Hybrid

1 week ago

Cyber Security Analyst

Cherokee Federal · United States, US · Remote

1 week ago

Cyber Security Analyst

Parsons Corporation · USA MD Aberdeen (209 Research Blvd), United States of America · Onsite

1 week ago

Cyber Security Analyst

SysGen Solutions Group · Calgary, Alberta, Canada

1 week ago

Cyber Security Analyst

Lts · United States - Remote · Remote

2 weeks ago

Cyber Security Analyst

National Bank of Kenya · Kenya

2 weeks ago

Cyber Security Analyst

Savannah River National Laboratory · Aiken, SC, United States, US

2 weeks ago

Cyber Security Analyst

Alcoa · CA MTR Montreal, QC, Canada

2 weeks ago

Cyber Security Analyst

Flsmidth · Chennai, India

2 weeks ago

Cyber Security Analyst

Nuffieldhealth · Barbican Support Centre, United Kingdom +1 · Hybrid

2 weeks ago

Cyber Security Analyst

Law Debenture · LONDON, London, City of, United Kingdom

2 weeks ago

Cyber Security Analyst

Parsons Corporation · USA MD Aberdeen (209 Research Blvd), United States of America · Onsite

3 weeks ago

Cyber Security Analyst

Booz Allen Hamilton · USA, IN, Indianapolis (8899 E 56th St), United States of America

3 weeks ago

Cyber Security Analyst

Westpacnz · Westpac on Takutai Square, New Zealand

3 weeks ago

Cyber Security Analyst

Trendmicro · Manila, Philippines

3 weeks ago

Cyber Security Analyst

Flsmidth · Monterrey, Mexico

3 weeks ago