Přeskočit na hlavní obsah
Založte si Indeed životopis - Zabere to jen několik vteřin

Pracovní místa splunk

Řadit dle: -
Nabídky práce: 57

Job Post Details

Threat Hunter #CFC Prague - job post

Accenture
4.0 out of 5
Praha
Plný úvazek
Než přejdete na webové stránky společnosti, vytvořte si účet Indeed.

Popis pracovní pozice

Zde se dozvíte, jak se podrobnosti nabídky práce shodují s vaším profilem.

Druh nabídky práce

  • Plný úvazek

Lokalita

Praha

Úplný popis pracovní pozice:

About us

Accenture Cyber Fusion Center in Prague is a unique multidisciplined team of around 270 people passionate about Cyber Security. As part of Accenture Security we support clients globally to prepare for and defend against the rapidly changing capabilities of cyber attackers. We are looking for security professionals to join our international team at our custom-built location.

Role summary

As part of the Accenture Cyber Fusion Center in Prague, you will be part of a specialised team to deliver managed Threat Hunting operations to our clients. Our managed Threat Hunting service enables our clients to uncover threats that would otherwise remain hidden. You will be looking for the evidence of active threats within our clients environments that bypass both preventative and detective controls using our delivery methodology and threat hunting tools and techniques.


Requirements

  • Experience with Threat Hunting techniques on both the endpoint and network data

  • Strong knowledge of Windows internals and solid networking fundamentals

  • Strong understanding of common attack vectors and offensive tools and tactics

  • Understanding of enterprise architectures and large IT environment operations

  • Understanding of common malware types and behaviours and common infection vectors

  • Ability to identify attacker Tactics, Techniques and procedures (TTPs)

  • Experience with IoC lifecycle (development, organization, sharing, effective usage)

  • Experience with statistical/quantitative analysis methods and tools

  • Ability to develop small automation scripts and makeshift tools (Python, PowerShell, Bash, …)

  • Strong findings documentation and reporting skills

  • Solid presentation and communication skills.

  • 3+ years of information security operations experience

Nice to have

  • Experience with Cloud environments

  • Experience with OT and ICS environments

  • Knowledge of system internals for Unix-based systems

  • Experience with reverse engineering and sandboxing technologies

  • Degree in relevant computer science/IT field

  • Security certifications, for example, but not limited to, GREM, GCFE, GCFA, CEH, GCIH

  • SIEM (Splunk, QRadar, Sentinel, …) and EDR (CrowdStrike, FireEye HX, Endgame, Defender ATP) experience

What we offer

  • You'll learn, grow and advance in an innovative culture that thrives on shared success, innovative and diverse ways of thinking and enables boundaryless opportunities that can drive your career in new and exciting ways

  • Opportunity to work on various interesting projects delivered to our global TOP 500 clients and with the newest trends in the cyber security area

  • Professional training and acquisition of crucial security certificates – from Offensive Security through CREST to SANS trainings and GIAC certifications

  • Ability to move between different teams with different specializations in either offensive or defensive security

  • Access to the cutting-edge cyber security products and solutions

  • Remote work

Snadno odpovídejte na pracovní nabídkyVložit životopis