Talent.com
Threat Hunting & Detection Content Analyst
Threat Hunting & Detection Content AnalystCGI • Ottawa
Threat Hunting & Detection Content Analyst

Threat Hunting & Detection Content Analyst

CGI • Ottawa
Il y a plus de 30 jours
Type de contrat
  • Temps plein
Description de poste

Position Description :

The Global Security Operations Center (GSOC) Threat Hunting & Detection Content Engineering Analyst contribute to strengthening our security posture on multiple facets by developing and maintaining advanced threat detection content and conducting proactive threat hunting activities. This person plays a critical role in proactively identifying and neutralizing threats, thereby reducing risk, enhancing incident response capabilities and ensuring security threats can be identified and translated into high fidelity & actionable alerts for security investigation.

Your future duties and responsibilities :

The Threat Hunting & Detection Content Analyst is responsible for the following activities :

Threat Hunting

  • Research tactics, techniques and procedures (TTPs) to plan threat hunting execution
  • Participate in the planning and execution of our threat hunting program
  • Perform research and development augmenting our capabilities
  • Perform proactive threat identification & hunting activities and follow up based on the result
  • Ad-hoc Incident support

Security Detection Content Engineering

  • Participate in the planning and execution of our security detection content engineering program
  • Translate intelligence and incident response report into actionable detection capabilities
  • Develop new and novel detection mechanisms, behavioral detection use cases, IOCs, etc.
  • Perform research and development augmenting our capabilities.
  • Identify new and emerging trends in threat actors' TTPs
  • Ad-hoc Incident support

    • Threat Hunting & Detection Content Service Management

  • Assist in producing operational report for effectiveness of the detection content & threat hunting service
  • Plan and deliver initiatives to streamline the services operations
  • Assist to manage the service operations
  • Establish and improve workflow, procedure, guideline for the services and automate the processes to optimize the teams’ operations

    • Automation and Integration

  • Initiate automation idea and deliver with Automation team to improve the operation efficiency and the quality of the detection content and threat hunting services.
  • Plan and deliver integration between different technologies platforms to improve our detection content and threat hunting services.

    • Other Responsibilities

  • Participate in innovation projects including the building, deployment and evaluation of new technologies
  • Participate in technology evaluation in collaboration with other stakeholders.
  • Provide advanced threat awareness and education to members of the team

    • Required qualifications to be successful in this role :

    The candidate should be able to demonstrate a thorough understanding of cyber security especially in threat hunting, security detection content engineering, digital forensic, incident response and threat intelligence areas. The candidate must possess an in-depth knowledge of modern threats, threat actors’ TTPs, threat hunting and detection content tools / platforms and methodologies.

    Education and Experience :

  • 5+ years of cyber security operations experience and at least 2+ years hands-on experience in threat hunting and security detection content engineering.
  • Bachelor’s degree in computer engineering, Computer Science, Information Technology, Cyber Security, or related field; advanced degree preferred.

    • Qualifications :

  • Proficient in using threat hunting tools such as Endpoint Detection and Response (EDR) & Log Analysis Platforms (SIEM)
  • General Knowledge of security tools such as TIP, NGFW, Sandbox, SASE, SIEM, EDR, WAF etc
  • Experience with scripting and programming languages (e.g., Python, Bash, etc.) for automation and analysis
  • Knowledge of various standard detection content format (Sigma, YARA, Snort Rule etc)
  • Knowledge of cyber security principles, practices, technologies, and standards
  • Strong knowledge of current threat, vulnerabilities and threat actors TTPs
  • Strong understanding of cybersecurity frameworks (e.g., MITRE ATT&CK, Cyber Kill Chain)
  • Knowledge of Windows, Linux and Mac Operating system
  • Strong knowledge of threat hunting, detection content and preferably also Incident Response, digital forensics and Threat Intelligence
  • Proficient in spoken and written English

    • Certifications :

  • eCTHP, GCFA, GREM, OSCP, CISSP or other reputable, technical and defensive / offensive focused certification are preferred

    • CGI is providing a reasonable estimate of the pay range for this role. The determination of this range includes factors such as skill set level, geographic market, experience and training, and licenses and certifications. Compensation decisions depend on the facts and circumstances of each case. A reasonable estimate of the current range is $60,–$,. This role is an existing vacancy.

    #LI-KM1

    Skills :

  • Cyber Security Consulting
    • Créer une alerte emploi pour cette recherche

    Threat Hunting Detection Content Analyst • Ottawa

    Offres similaires
    Lead, Business Intelligence Product Developer

    Lead, Business Intelligence Product Developer

    Canadian Blood Services • Ottawa
    Temps plein
    Lead, Business Intelligence Product Developer.John's, NL, CA, A1B 3Z9 Calgary, AB, CA, T3N 1S5 Saint John, New Brunswick, CA, E2K 0H6 Dartmouth, Nova Scotia, CA, B3B 0H7 Brampton, ON, CA, L6T 5M1 E...Voir plus
    Dernière mise à jour : il y a 4 jours • Offre sponsorisée
    Director, Paid Search and Web Content

    Director, Paid Search and Web Content

    SurveyMonkey • Ottawa
    Temps plein
    SurveyMonkey is the world’s most popular platform for surveys and forms, built for business—loved by users.We combine powerful capabilities with intuitive design, effectively serving every use case...Voir plus
    Dernière mise à jour : il y a 3 jours • Offre sponsorisée
    Cyber Defense Analyst : Threat Detection & Response

    Cyber Defense Analyst : Threat Detection & Response

    Arsenault • Ottawa
    Temps plein
    A technology services firm in Ottawa is looking for an experienced Cybersecurity Analyst to support risk mitigation efforts. The candidate will manage Cyber activities such as monitoring system acti...Voir plus
    Dernière mise à jour : il y a 23 jours • Offre sponsorisée
    SENIOR ANALYST, MEDIA ANALYTICS - ottawa

    SENIOR ANALYST, MEDIA ANALYTICS - ottawa

    MODCO Media • ottawa, on, ca
    Temps plein
    SENIOR ANALYST, MEDIA ANALYTICS.The Senior Analyst, Media Analytics will leverage data to drive insights and support strategy for MODCO’s portfolio of clients. This role will contribute to the day-t...Voir plus
    Dernière mise à jour : il y a plus de 30 jours • Offre sponsorisée
    Statistical Analyst - ottawa

    Statistical Analyst - ottawa

    Tigermed • ottawa, on, ca
    Temps plein
    Collaborate with statisticians and data managers to ensure data accuracy and consistency.Support ad-hoc data requests, clinical data reviews, and data validation activities.Continuously improve pro...Voir plus
    Dernière mise à jour : il y a 3 jours • Offre sponsorisée
    Responsible Gambling Analyst - ottawa

    Responsible Gambling Analyst - ottawa

    BET99 • ottawa, on, ca
    Temps plein
    BET99 is Canada's Premiere Online Sportsbook and Casino.Launched in 2020, we have consistently innovated the online gaming landscape every step of the way, exponentially growing our customer base a...Voir plus
    Dernière mise à jour : il y a 1 jour • Offre sponsorisée
    Analyste en sécurité de l'information – Quart de nuit (100 % télétravail) - ottawa

    Analyste en sécurité de l'information – Quart de nuit (100 % télétravail) - ottawa

    Hitachi Cyber • ottawa, on, ca
    Télétravail
    Temps plein
    Horaire : 23h00 à 9h00 ou minuit à 10h00 | Poste en télétravail | Français obligatoire.Rejoins l’équipe dynamique et innovante d’. Si tu es motivé(e), autonome et prêt(e) à faire une réelle différen...Voir plus
    Dernière mise à jour : il y a plus de 30 jours • Offre sponsorisée
    IT Security Threat & Risk Assessment (TRA) Analyst

    IT Security Threat & Risk Assessment (TRA) Analyst

    ADGA Group • Ottawa
    Temps plein
    IT Security Threat & Risk Assessment (TRA) Analyst.Senior role on the Strategic Radio Capability project (Option Analysis and Definition phases) supporting radio frequency communications systems.AD...Voir plus
    Dernière mise à jour : il y a 23 jours • Offre sponsorisée
    Cyber Security Analyst

    Cyber Security Analyst

    Brookfield Renewable • Gatineau
    Temps plein
    Get AI-powered advice on this job and more exclusive features.Direct message the job poster from Brookfield Renewable.Talent Acquisition Coordinator, Brookfield Renewable | MBA | B.Brookfield Renew...Voir plus
    Dernière mise à jour : il y a 23 jours • Offre sponsorisée
    Cyber Security Analyst - Microsoft Sentinel Specialist (Onsite)

    Cyber Security Analyst - Microsoft Sentinel Specialist (Onsite)

    PrecisionERP / PrecisionIT • Ottawa
    Temps plein +1
    A technology consulting firm is recruiting a Cyber Security Analyst in Ottawa for a 6+ month contract.You'll tune Microsoft Sentinel for security monitoring, enforce policy controls, and collaborat...Voir plus
    Dernière mise à jour : il y a 23 jours • Offre sponsorisée
    SENIOR ANALYST, MEDIA ANALYTICS - MODCO Media

    SENIOR ANALYST, MEDIA ANALYTICS - MODCO Media

    MODCO Media • gatineau, qc, ca
    Temps plein
    SENIOR ANALYST, MEDIA ANALYTICS.The Senior Analyst, Media Analytics will leverage data to drive insights and support strategy for MODCO’s portfolio of clients. This role will contribute to the day-t...Voir plus
    Dernière mise à jour : il y a plus de 30 jours • Offre sponsorisée
    Lead Cyber Defense Analyst – Hybrid, High-Impact

    Lead Cyber Defense Analyst – Hybrid, High-Impact

    Payments Canada • Ottawa
    Temps plein
    A leading financial organization in Ottawa seeks a Senior Cyber Analyst to enhance cybersecurity measures and lead a team in incident response. This role requires expertise in information security, ...Voir plus
    Dernière mise à jour : il y a 5 jours • Offre sponsorisée
    Defense ILS Specialist - Hybrid / Onsite Contract

    Defense ILS Specialist - Hybrid / Onsite Contract

    NewFound Recruiting • Ottawa
    Temps plein
    A reputable recruitment agency is looking for an Integrated Logistics Support Specialist in Ottawa, Canada.This hybrid role requires expertise in maintaining logistics solutions for Defence systems...Voir plus
    Dernière mise à jour : il y a 19 jours • Offre sponsorisée
    Product Cyber Security Analyst Hybrid

    Product Cyber Security Analyst Hybrid

    Ribbon Communications Inc. • Ottawa
    Temps plein
    Product Cyber Security Analyst Hybrid page is loaded## Product Cyber Security Analyst Hybridlocations : Canada, Ontario, Ottawatime type : Full timeposted on : Posted Todayjob requisition id : ...Voir plus
    Dernière mise à jour : il y a 15 jours • Offre sponsorisée
    Hybrid Tier 2 Cybersecurity Analyst : Threat Hunting

    Hybrid Tier 2 Cybersecurity Analyst : Threat Hunting

    Calian Group Ltd. • Ottawa
    Temps plein
    A leading tech firm in Ontario, Canada is seeking a Tier 2 Cybersecurity Analyst to support their enterprise cyber program. Responsibilities include investigating security incidents, automating secu...Voir plus
    Dernière mise à jour : il y a 23 jours • Offre sponsorisée
    Security Specialist - Threat Risk Assessment - Senior - ottawa

    Security Specialist - Threat Risk Assessment - Senior - ottawa

    Russell Tobin • ottawa, on, ca
    Temps plein
    Job Title : Security Specialist - Threat Risk Assessment - Senior.Location : Toronto, Onsite 56 Wellesley.Duration : 12+ Months (Possible Extension). Senior Information Security and Privacy Specialist ...Voir plus
    Dernière mise à jour : il y a 12 jours • Offre sponsorisée
    Threat Modeling Analyst

    Threat Modeling Analyst

    nugget.ai • Montreal, Ottawa, Toronto
    Temps plein
    The Threat Modeling Analyst is responsible for identifying threats and vulnerabilities across company systems and communicating the issues with the appropriate team – infrastructure, IT, risk, DLP,...Voir plus
    Dernière mise à jour : il y a 23 jours • Offre sponsorisée
    Security Specialist - Threat Risk Assessment - Senior

    Security Specialist - Threat Risk Assessment - Senior

    Russell Tobin • ottawa, on, ca
    Temps plein
    Job Title : Security Specialist - Threat Risk Assessment - Senior.Location : Toronto, Onsite 56 Wellesley.Duration : 12+ Months (Possible Extension). Senior Information Security and Privacy Specialist ...Voir plus
    Dernière mise à jour : il y a 12 jours • Offre sponsorisée