Cyber Threat Hunt Analyst

Social network you want to login/join with:

Citi is seeking a highly motivated and experienced Cyber Threat Hunt Analyst to join our team in Dublin, Ireland. This role is based in the Cyber Intelligence Center (CIC), which is part of the larger Chief Information Security Officer (CISO) organization. The CIC's primary mission is to provide proactive threat intelligence to protect Citi's global assets and infrastructure.

As a Cyber Threat Hunt Analyst, you will be responsible for researching and leveraging available intelligence to design and conduct hypothesis-based hunts. You will utilize your expertise in threat hunting methodologies, security tools, and data analysis techniques to uncover hidden threats and improve our overall security posture.

Responsibilities:

1. Conduct proactive, hypothesis-based threat hunting activities using various techniques and tools to identify malicious activity and potential security breaches.
2. Develop and implement threat hunting strategies based on industry best practices, threat intelligence, and organizational risk assessments.
3. Analyze network traffic, system logs, and other data sources to detect anomalies, patterns, and indicators of compromise (IOCs).
4. Collaborate with other security teams, such as incident response, security engineering, and security operations, to enhance security defenses and incident response capabilities.
5. Investigate security incidents and breaches to determine the scope, impact, and root cause.
6. Develop and maintain threat hunting playbooks, procedures, and documentation.
7. Stay up to date with the latest threat landscape, attack techniques, and security vulnerabilities.
8. Contribute to the development and improvement of security tools and technologies.
9. Provide technical expertise and guidance to other security team members.
10. Communicate findings and recommendations to stakeholders in a clear and concise manner.

Qualifications:

1. Bachelor's degree in Computer Science, Information Security, or a related field.
2. Minimum of 3 years of experience in cyber security, with a focus on threat hunting, incident response, or security analysis.
3. Strong understanding of networking protocols, operating systems, and security technologies.
4. Proficiency in analyzing network traffic, system logs, and other data sources using security tools such as SIEM, IDS/IPS, and packet capture tools.
5. Experience with threat intelligence platforms and threat hunting frameworks.
6. Knowledge of common attack techniques, malware families, and threat actor tactics, techniques, and procedures (TTPs).
7. Ability to develop and implement threat hunting strategies based on industry best practices and threat intelligence.
8. Strong analytical and problem-solving skills.
9. Excellent communication and collaboration skills.

Preferred Qualifications:

1. Security certifications such as GIAC Certified Reverse Engineering Malware (GREM), CISSP, or GIAC Certified Threat Hunter (GCTH).
2. Experience with scripting languages such as Python or PowerShell for automating security tasks and data analysis.
3. Familiarity with cloud security concepts and technologies.
4. Experience with reverse engineering malware.
5. Knowledge of data science and machine learning techniques for security analysis.
6. Experience using Splunk for security analysis, threat hunting, and incident investigation.

What we can offer you

By joining Citi Dublin, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed) and enjoy a whole host of additional benefits that support you (and your family) to be well, live well and save well. Discover more here.

Alongside these benefits, Citi is committed to creating an inclusive workplace where everyone feels comfortable bringing their whole self to work every day. We seek the best talent worldwide to energize, motivate, and empower our teams to thrive.

Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities.