Senior Cybersecurity Engineer - Cyber Defense Professionals

Job Expired

Senior Cybersecurity Engineer

(Advanced Cyber Threat Team – Threat Hunter/Intel)

Job Summary

The Senior Cybersecurity Engineer is a role within the Liberty Mutual Advanced Cyber Threat Team reporting to the Cyber Security Operations Center. This technical role is responsible for proactively and iteratively hunting for cyber threats. The successful candidate will work at the intersection of Cyber Threat Hunting, Cyber Threat Intelligence, Malware Analysis & Reverse Engineering, and Digital Forensics & Incident Response.

Job Responsibilities

Identify and track threat actor Tactics, Techniques, and Procedures (TTPs)
Create Cyber Threat Hunt hypotheses based on TTPs
Operate and mature an iterative agile Cyber Threat Hunting cycle
Leverage internal and external data sets and threat intelligence feeds to drive cyber threat hunting initiatives
Conduct Digital Forensics investigations and Malware Analysis to identify malicious activity and derive Indicators of Compromise (IOCs) and associated detection rules.
Investigate and report on cyber threat hunt findings, including recommendations to improve security posture across detective and preventive controls
Conduct Incident Response activities as required based on hunt findings
Contribute to engineering initiatives to operationalize Cyber Threat Intelligence feeds and API integrations
Validate security control coverage against identified IOCs based on emerging cyber threat intelligence
Collaborate with the Offensive Security team to analyze and evaluate the effectiveness of existing security controls against identified TTPs
Contribute to the creation and dissemination of finished cyber threat intelligence products and briefings
Participate in and contribute to select Cyber Threat Intelligence sharing communities
Serve as a Lead Responder on a global cybersecurity incident response team with a periodic on-call requirement

Job Specifications:

Reference: 2022-45612
Category: Technology
Primary Location: Portsmouth, NH
Additional Locations: Remote; Indianapolis, IN; Boston, MA; Dover, NH; Plano, TX;
Schedule: Full-Time

Salary: USD-$124,900.00-–-$161,600.00-/-Year
Education Level:
Travel: As Needed

Qualifications

Preparation, Training, and Experience

Subject matter expertise in at least one of the following areas: Cyber Threat Hunting, Malware Analysis & Reverse Engineering, Cyber Threat Intelligence, Digital Forensics & Incident Response
College-level degree in Computer Science, Computer Engineering, Information Security, or other related discipline
Active Cybersecurity certifications are desirable (but not required) such as GCIH, GREM, GCFA, GCTI, OSCP etc. (see list below)
5 years of recent experience working as a cybersecurity professional
Previous experience working in a Cyber Security Operations Center or similar function is desirable
Knowledge of relevant frameworks, standards, and best practices such as NIST CSF, PCI-DSS, CIS CSCs, MITRE ATT&CK, Cyber Kill Chain etc.
Experience with using a Security Information Event Management (SIEM) platform
Experience with using a scripting language such as Python or PowerShell for task automation or tool creation is desirable
Demonstrable knowledge of several of the following areas: cybersecurity concepts, network protocols, firewalls, IDS/IPS systems, email security, endpoint security, network security, Windows/Linux/macOS systems, cyber threat hunting, malware analysis tools and techniques, cyber threat intelligence, common threat actor TTPs, application security concepts, cloud security fundamentals, Incident Response methodologies.
Excellent oral and written communication skills.