Cyber Threat Hunt Senior Consultant

Job Description:

The main goal of Cyber Threat Hunting is to proactively identify undetected cyber threats affecting DXC and its customers.

The Senior Cyber Threat Hunter will be responsible for providing technical support in the creation and delivery of technology solutions designed to meet both DFIâs and its customersâ business needs. Utilising a combination of both commercial platforms and Open-Source data, they will leverage intelligence to help formulate and deliver Threat Hunting and Incident Response services on behalf of DXC.

As a Senior Cyber Threat Hunter the candidate is expected to help drive the progress of the team, providing new service ideas, helping create and design new methodologies in Hunting and take on new platforms and technologies that will ensure DXC continue to provide leading-edge service delivery in the Cyber Security area. Client-facing responsibilities will include presenting and explaining the Threat Hunt service reports, and handling of client queries. The candidate should be expert in producing reports and presentations and capable of using the full range of Microsoft Office applications. Further, they will participate in the continued development and back-end management of the required infrastructure to maintain these services. A strong familiarity with the principles of network and endpoint security, current threat landscape, and attack trends is required. The Senior Cyber Threat Hunter is accountable for consistent chargeability levels (or expense relief for internal project teams) and for assisting in meeting or exceeding revenue and customer satisfaction goals.

Location: Germany

Responsibilities:

• Provide leadership with Commercial Clients, handling Threat Hunt service requests, queries and issues. Responsible for ensuring specific client satisfaction and for delivering the regular client Threat Hunt reports and presentations ⢠Lead a subset of team members in specific Client Threat Hunt exercises, managing workload distribution and organisation of all aspects of the delivery of the Threat Hunt service for the assigned client

• Be a thought-leader in terms of development of Threat Hunt hypothesis and methodologies, along with service delivery improvement

• Lead major Incident Investigations, tracking and coordinating the actions of team members

• Report accordingly on status of client Threat Hunts to operational management

• Analyse and correlate results from various technology platforms. This entails investigating and assessing the impact of security events resulting from hits on indicators of compromise (IOCs), indicators of attack (IOA), or behavioural patterns (TTPâs - Tactics, Techniques, and Procedures) derived from bespoke queries within available technology platforms

• Participate where required in the design, execution, and reporting of Threat Hunt exercises on behalf of both DXC and their customers ⢠Understand DXCâs technologies to deliver part of a Cyber Defense security service, which meets both DXCâs and their customersâ requirements.

• Able to travel to client sites when needed

• Participation in an on-call rota

Knowledge and Skills:

General:

• Deep understanding of Windows Operating Systems and Linux Operating Systems

• Deep understanding of the principles of Threat Hunting and Incident Response

• Excellent communication skills and customer centric focus - ability to communicate clearly and in a timely manner with all customers, partners and users, internal and external

• Excellent analytical and troubleshooting skills and excellent report writing skills

• Understanding of 24x7 mission critical enterprise computing environments and the impact of service disruption on a companyâs bottom line

• Able to pro-actively search for solutions from knowledge bases, support documentation and other information.

• Flexible, self-motivated with the ability to work under pressure in an international and culturally diverse organization.

Education and Professional experience:

Required:

• University Degree/Diploma in Computer Science, Digital/Cyber Security

• Event and Alert analysis from platforms such as a SIEM

• Log analysis â particularly Windows Event Logs, Web logs, Linux logs

• 2yr+ Endpoint Detection and Response (EDR) experience

• 5yr+ industry experience

Desirable:

• Any Threat Hunting / Forensic Analysis / Incident Response certifications

• Other certifications (e.g. CHFI, CISSP, CEH, CompTIA Security +, GCIH, GREM, GCFA)

• Computer Forensics / Cyber Security / Ethical Hacking experience

• Malware Analysis, Reverse Engineering

• Penetration Testing

Other requirements:

• Fluent in written and spoken German and English.

DXC Technology stands for equal opportunities, namely we do not discriminate on the basis of race, religion, color, sex, age, disability or sexual orientation.  All recruitment decisions are based solely on qualifications, skills, knowledge and experience and relevant business requirements.

Thank you for taking time reviewing our job ad. If you believe this is the right match for you, please do not hesitate to apply. We are eager to learn more about you

Only shortlisted candidates will be contacted.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.