T&T-Cyber-Strategy & Transformation- Deputy Manager- Threat Hunting - AWS, Sentinel

Job Title: Threat Hunter (AWS and Sentinel Specialist)

Job Description:
We are looking for a skilled Threat Hunter who is proficient in AWS and Microsoft Azure Sentinel to join our cybersecurity team. As a Threat Hunter, you will be responsible for proactively identifying and neutralizing potential threats to our clients' digital infrastructure. Leveraging your expertise in threat hunting methodologies, you will analyze complex data sets, investigate security incidents, and develop actionable insights to enhance our clients' cyber resilience.

Key Responsibilities:

• Conduct proactive threat hunting activities across clients' AWS environments using advanced techniques and tools.
• Utilize Azure Sentinel to analyze security telemetry, logs, and other data sources for signs of malicious activity.
• Collaborate with cross-functional teams to develop custom detection strategies tailored to clients' specific threat profiles.
• Investigate security incidents, conduct root cause analysis, and provide timely recommendations for remediation.
• Develop and maintain threat intelligence feeds to enhance detection capabilities and stay ahead of emerging threats.
• Participate in incident response activities, including incident triage, containment, and recovery efforts.
• Document findings, methodologies, and recommendations in clear and concise reports for internal stakeholders and clients.
• Stay up to date on the latest cyber threats, attack techniques, and security technologies to continuously improve our threat hunting capabilities.
• Provide mentorship and guidance to junior team members to foster their growth and development in threat hunting practices.

Requirements:

•  Bachelor's degree in Computer Science, Information Security, or related field.
• Advanced certifications such as CISSP, CEH, or GIAC are preferred.
• Minimum of 6 years of experience in cybersecurity, with a focus on threat hunting and incident response.
• Proficiency in AWS services and architecture, with hands-on experience in security configuration and monitoring.
• Strong understanding of Azure Sentinel or similar SIEM platforms, including query development, rule creation, and custom alerting.
• In-depth knowledge of threat intelligence sources, frameworks, and methodologies.
• Demonstrated experience in analyzing security telemetry, logs, and network traffic to identify potential threats.
• Excellent analytical and problem-solving skills, with the ability to think critically under pressure.
• Effective communication skills, with the ability to convey technical concepts to non-technical stakeholders.
• Strong attention to detail and a passion for staying ahead of evolving cyber threats.