Elastic Threat Detection Specialist Stuttgart
Vor 2 Tagen
**Elastic Fusion Detection Specialist**
**Charleston, SC**
**Minimum Secret Clearance required with upgrade to TS-SCI**
As an Elastic Detection Specialist, you will be responsible for the creation, development, and the evolution of detection logic. You will work closely with the SOC floor to help improve the performance and efficacy of detection logic. You will be researching TTPs and the threat landscape and translating that research into high quality custom detections.
**Position Responsibilities and Duties**
- Use Network and Host Based data to drive detection, monitoring, and response capabilities
- Create detection analytics based off the MITRE ATT&CK Framework and other security frameworks
- Perform unique research on adversarial Tools, Techniques, and Procedures (TTPs)
- Overtime may be required as needed to support incident response actions (Surge)
- Up to 15% Travel may be required
**Qualifications**
- Must be a US Citizen
- 3 years of experience performing Incident Response, Forensics, Malware Analysis, or Penetration Testing
- 3 years of experience performing analysis or threat hunting with Windows Event logs, Sysmon, and/or Linux logs
- 3 years of experience using a Log Aggregator
**Highly Preferred Skills**
- 3 years of experience with performing analysis, threat hunting, or building detection in Splunk and/or Elastic
- 3 years of experience threat hunting or performing Incident Response in an EDR
- Strong written and verbal communication skills
- Strong understanding of network level protocols
- Low level Operating System understanding (Windows/Linux internals)
- Ability to perform basic static Malware Analysis
**Certifications**
- DoD 8570 and CNDSP IR compliant certifications
**Company Overview**
Adapt Forward is a cybersecurity solutions provider for some of the nation’s most valuable information systems. Leveraging advanced threat assessment technology and experience in building high-level information security infrastructure, we develop adaptive solutions uniquely tailored to our customers’ business objectives to protect sensitive data against sophisticated threats in an increasingly complex security environment.
**Summary of Benefits**
- Comprehensive Physical Wellness Package, including Medical, Dental, Vision Care, plus Flexible Spending Accounts for health
- and dependent-care are included in our standard benefits plan.
- 401k Retirement Plan with Matching Contribution is immediately available and vested.
- Annual Training Budget to be used for conference attendance, school enrollment, certification programs, and associated travel expenses.
- Eleven Federal Holidays, plus three weeks of PTO/vacation/sick leave that accrues at a rate of ten hours per month.
- Employee Assistance Program: Counseling/legal assistance and other employee well-being programs are also offered.
**Equal Opportunity Employment**
- Adapt Forward is an equal opportunity employer that values diversity in the workplace and does not discriminate or allow discrimination on the basis of race, religion, age, gender, sexuality, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. Adapt Forward promotes affirmative action for minorities, women, disabled persons, and veterans._
V1PJuvvujA
-
Threat Detection Specialist Stuttgart
Vor 2 Tagen
Stuttgart, Deutschland Adapt Forward Vollzeit**Fusion Detection Specialist** **Charleston, SC** **Minimum Secret Clearance required with upgrade to TS-SCI** As an Elastic Detection Specialist, you will be responsible for the creation, development, and the evolution of detection logic. You will work closely with the SOC floor to help improve the performance and efficacy of detection logic. You will...
-
Stuttgart, Deutschland Sentar VollzeitRole Description: The DETECT Analyst plays a critical role in strengthening network defense capabilities by developing, testing, and implementing advanced detection measures across multiple data sources. This position involves researching emerging threats, building detection analytics, and conducting forensic analysis and threat hunting to identify and...
-
Cyber Threat Intelligence
Vor 3 Tagen
Stuttgart, Deutschland Sentar VollzeitRole Description: As a Cyber Threat Intelligence Analyst, you will provide analysis on relevant threats to the customer environment in support of overall defensive efforts. You will deliver tactical context surrounding adversarial Tactics, Techniques, and Procedures (TTPs) and support Network Security Monitoring (NSM) and Incident Response (IR) teams. Your...
-
Cyber Threat Intelligence
vor 1 Woche
Stuttgart, Deutschland Sentar Vollzeit 60.000 € - 120.000 € pro JahrSentar is proud to be an employee-owned company, fostering a culture of empowerment, collaboration, and innovation. Sentar is dedicated to developing the critical talent that the connected world demands to create solutions to address the convergence of cybersecurity, intelligence, analytics, and systems engineering. We invite you to join the team where you...
-
Cyber Threat Intelligence
Vor 2 Tagen
Stuttgart, Baden-Württemberg, Deutschland Sentar Vollzeit 60.000 € - 120.000 € pro JahrSentar is proud to be an employee-owned company, fostering a culture of empowerment, collaboration, and innovation. Sentar is dedicated to developing the critical talent that the connected world demands to create solutions to address the convergence of cybersecurity, intelligence, analytics, and systems engineering. We invite you to join the team where you...
-
DCO Watch Analyst Tier III Malware Stuttgart
Vor 3 Tagen
Stuttgart, Deutschland Adapt Forward VollzeitCyber Security Analyst III, DCO Watch Analyst Tier 3 Malware Stuttgart, Germany Secret Clearance, with ability to obtain TS/SCI Position Description The Tier 3 Defensive Cyber Operations (DCO) Watch Analyst is a senior-level role responsible for leading complex incident response, conducting proactive threat hunting, and enhancing detection capabilities...
-
DCO Watch Analyst Tier III Forensics Stuttgart
vor 2 Wochen
Stuttgart, Deutschland Adapt Forward VollzeitCyber Security Analyst III, DCO Watch Analyst Tier III Forensics Stuttgart, Germany Secret Clearance, with ability to obtain TS/SCI As a Tier 3 Defensive Cyber Operations (DCO) Watch Analyst you will be responsible for leading complex incident responses, conducting proactive threat hunting, and enhancing detection capabilities within a Cybersecurity...
-
DCO Watch Analyst Tier III Malware Stuttgart
vor 1 Woche
Stuttgart, Baden-Württemberg, Deutschland Adapt Forward Vollzeit 75.000 € - 95.000 € pro JahrCyber Security Analyst III, DCO Watch Analyst Tier 3 MalwareStuttgart, GermanySecret Clearance, with ability to obtain TS/SCI Position DescriptionThe Tier 3 Defensive Cyber Operations (DCO) Watch Analyst is a senior-level role responsible for leading complex incident response, conducting proactive threat hunting, and enhancing detection capabilities within...
-
DCO Watch Analyst Tier III Malware Stuttgart
Vor 2 Tagen
Stuttgart, Baden-Württemberg, Deutschland Adapt Forward Vollzeit 80.000 € - 120.000 € pro JahrCyber Security Analyst III, DCO Watch Analyst Tier 3 Malware Stuttgart, Germany Secret Clearance, with ability to obtain TS/SCI Position DescriptionThe Tier 3 Defensive Cyber Operations (DCO) Watch Analyst is a senior-level role responsible for leading complex incident response, conducting proactive threat hunting, and enhancing detection capabilities...
-
DCO Watch Analyst Tier III Forensics Stuttgart
Vor 3 Tagen
Stuttgart, Deutschland Adapt Forward VollzeitCyber Security Analyst III, DCO Watch Analyst Tier III Forensics Stuttgart, Germany Secret Clearance, with ability to obtain TS/SCI As a Tier 3 Defensive Cyber Operations (DCO) Watch Analyst you will be responsible for leading complex incident responses, conducting proactive threat hunting, and enhancing detection capabilities within a Cybersecurity...
