We are seeking an experienced Senior Cybersecurity Threat Hunter to join our Information Security team. This senior-level role is critical in leading proactive threat hunting, vulnerability mitigation, digital forensics, and incident response (DFIR) efforts to safeguard our organizations infrastructure. The ideal candidate will have extensive expertise in identifying and mitigating advanced cyber threats, related to Identity, Data, Device & Application. conducting in-depth forensic analysis and driving risk-reduction initiatives across the organization. As a senior member of the team, you will mentor junior staff, set strategic directions for threat detection, and play a pivotal role in enhancing our security posture.
Key Responsibilities
Advanced Threat Hunting: Lead proactive threat hunting initiatives to detect sophisticated cyber threats, attack vectors, and vulnerabilities across all environments (on-premises, cloud, hybrid).
Optimize & Secure: Ensure security improvements of Microsoft 365 platforms. Conduct regular audits to monitor and optimize the security posture of MS 365 Defender platforms.
Risk Reduction Strategy: Analyze organizational risk from emerging threats, providing strategic recommendations and working cross-functionally to implement effective mitigation strategies that reduce exposure to cyberattacks.
Mentorship & Leadership: Train junior threat hunters and cybersecurity staff, helping to develop team capabilities and improving overall security intelligence.
Incident Investigation: participate in high-priority investigations, utilizing advanced analysis techniques to assess the scope and impact of incidents, determine threat actor tactics, and recommend actionable response measures.
Threat Intelligence Integration: Utilize advanced threat intelligence platforms and external sources to enhance threat detection and anticipate evolving attack techniques. Implement threat intelligence into detection strategies and mitigation plans.
Security Tools & Forensic Techniques: Drive the configuration, customization, and optimization of security tools, including SIEM, EDR solutions, and forensic platforms, to improve the teams ability to detect and respond to threats.
Strategic Reporting & Documentation: Develop and present reports of threat trends, findings and improvements.
Cross-Department Collaboration: Work closely with IT, DevOps, Security and other business units to ensure proactive Cybersecurity threats mitigation and security posture improvements share knowledge on security risks and mitigations.
Process Improvement: Lead continuous improvement efforts in threat hunting methodologies, forensic analysis techniques. Stay updated on the latest cybersecurity trends and technologies to ensure cutting-edge threat detection and defense.
דרישות:
Education: Bachelors degree in Cybersecurity, Computer Science, Information Technology, or a related field or equivalent experience.
Experience:
At least 6 years of experience in IT Infrastructure, Systems & Network Administrator, and Proven experience as a Microsoft 365 Engineer/Architect and Global Tenant admin
3 years of experience in Information Security/Cybersecurity domain in threat hunting, analysis & security engineering.
Advanced Technical Proficiency:
Deep understanding of Microsoft 365 security suite, including Defender, Entra ID, MS Purview, Azure Security, SSO, OneDrive, Teams, SharePoint, and Power Automate.
Comprehensive knowledge of Microsoft 365 technical architecture and interdependencies with other enterprise services.
Deep knowledge in networking, specifically OSI/TCP IP model and protocols.
Extensive knowledge of security technologies, including firewalls, endpoint protection, SIEM, and vulnerability management tools including logs and forensics analysis.
PowerShell Proficiency: Advanced skills in PowerShell scripting for automation and management and response actions.
Experience with cloud security (AWS, Azure, Google Clo המשרה מיועדת לנשים ולגברים כאחד.