Job description / Role
• The Threat Hunting and Intelligence function is responsible for scouting the threat landscape, assessing adversaries' impact on the organization and operationalizing detection measures to protect the core business in addition to acting as an escalation point for incidents escalated from threat monitoring and triage function.
• Researches threats using intelligence sources and determines impact to customer
• Compile intelligence reports on a set basis for customer consumption
• Initial analysis of security intelligence feeds
• Participation in Security Incident Management Process / Guidelines for severe intelligence findings.
• Gathering, analysis, and communication of threat intelligence through the intelligence process
• Review daily cyber threat intelligence reports and feeds to identify latest and emerging threats
• Participate in hunting activities based on indicators of compromise or suspicious anomalous activity based on data alerts or data outputs from various toolsets
• Initial forensics investigation for escalated incidents
• Periodically update, maintain and tune the use case framework and response playbooks, provide implementation and tuning instructions to tools admin for implementation
• Fine-tuning and whitelisting EDR solutions to eliminate false positives
• Perform IOC sweeps and blocking when required
• Strong analytical and problem-solving skills
• Experience of TIP, SIEM, SOAR and Vulnerability Assessment technologies
• Experience with offensive security tools and latest threat actors tactics and techniques
• Experience in malware analysis, log analysis, and digital forensics
• Experience in incident response and remediation
• Experience in use cases and playbooks design
• Good knowledge of scripting languages such as Python
• Knowledge of MITRE ATT&CK Framework
• Experience in Open-Source Intelligence gathering
About the Company
Technosys is IT Software Company we have Expertise in Developing Best quality Website and Mobile app Development, Software Development, IoT Application, Block chain, Crypto currency etc.
We provide you with the best quality and cost-effective solutions, with quick response. We provide complete end to end services from Consulting, Development, and Support to our clients. Our well-Experiences and Professional team are here to provide you the world-class App and Software Development Services. Technosys was established to deliver leading edge solutions and integrated services to businesses and organizations. We are created with the vision to make process easier, providing our customers with robust strategic approach and customizable enhanced solutions in various sector of business.