Dell Cyber Security Threat Hunter - Cloud/Mobile in Bucharest, Romania
C yber Security Threat Hunter - Cloud/Mobile
People make Dell – so wherever in the world they work, everyone is rewarded for their contribution. Ready to develop your career in a truly global company? Within the Cyber Security Team at Dell, we are looking for a Cyber Security Threat Hunter to join our team in Bucharest.
Dell is a collective of customer-obsessed, industry-leading visionaries. At our core is a commitment to diversity, sustainability and our communities. We offer unparalleled growth and development opportunities for our team members. We believe that technology is essential for driving human progress, and we’re committed to providing that technology to people and organizations everywhere, so they can transform the way they work and live.
Reporting to the Dell Global Incident Response Team, responsible for investigating and reporting of major security incidents supporting all Dell business units and mergers & acquisitions across the globe. This role requires experience in all phases of Cyber Security Incident Response including preparation, analysis, notification, response, recovery, and post-mortem. The Global Incident Response Team is responsible for coordinating with IT, Legal, Human Resources, and other appropriate business units to gather incident details, assess impact, and coordinate response. This role interacts with all levels of the organization, particularly within the Global IT organization and is viewed as a subject matter expert.
Performing end-to-end threat hunting, developing, maturing and maintaining TTP or attack pattern detection techniques, managing and consistently maturing the security incident response process to meet the needs of Dell, and building the Global Incident Response Team's technical investigative capabilities (process & technology).
Perform the full threat hunting cycle with focus on Cloud or Mobile, including the development of EDR detection rules, recommend and mitigate the effects caused by an incident.
Perform technical cyber security investigations on security incidents, root cause analysis and deep dive analysis of malicious artifacts, analyze threat intelligence, identify TTP and attack patterns.
Form and lead a leveraged virtual incident response team with the various global IT teams and business units and coordinate resources to effectively perform incident response tasks.
Build security utilities and tools for internal use that enable you and your fellow team mates to operate at high speed and broad scale.
Mature the Security Incident Response process to ensure it meets the needs of the global business and is adhered to.
Analyze large and unstructured data sets to identify trends and anomalies indicative of malicious activities. Provide situational awareness on the current threat landscape and the techniques, tactics and procedures associated with specific threats.
5 - 7 years hands-on experience with focus in areas such as systems, network, application, and information security, must possess either one or more of the following certifications – SANS GREM, GCIH, GCFA or Offensive Security OSCE.
Exceptional ability to conduct cyber security investigations, analyze and distill relevant findings and determine root cause.
Strong knowledge of web technologies, networking protocols, Microsoft Windows and Linux/Unix platforms and tools with related experience in corporate infrastructures.
Strong technical experience and familiarity of various types and techniques of cyber-attacks, with the incident response and threat hunting lifecycles.
Experience in Log and Event analysis as well as correlation of very large datasets and in building automated tools in one or more of the following languages: Python, Ruby, PowerShell, Bash, Batch, C,
Excellent analytical thinking, time management and coordination skills and excellent command in English (both written and verbal);
Ability to work in a dynamic and multicultural environment, with a positive and professional attitude.
Our people are the most critical component of our long-term success and their health and wellbeing are our priority. You will enjoy a comprehensive, locally competitive benefits package.
Dell is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity and/or expression, national origin, protected veteran status, disability, genetics, or citizenship status (when otherwise legally authorized to work) and will not be discriminated against on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we operate. Dell encourages applicants of all ages.