Tech Risk – SIRT – Cyber Threat Hunting – Associate


Business Unit Overview

Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA. Within Technology Risk, The Security Incident Response Team (SIRT) identifies malicious activity, manages the lifecycle of vulnerabilities within GS technologies, and investigates and manages threats across the firm. We are a team of securitysoftware, and product engineers that allow the firm to respond appropriately to cyber risks through the use of detection models, security architecture, and cutting-edge cyber threat analysis to manage internal and external threats against the firm.


In this role, you will join a dedicated global cyber threat hunting team focused on proactively identifying threats within the organization using data analysis and investigative techniques. You will also drive improvement to the organization’s overall security posture through technical analysis of threat actor behaviors, Purple and Red Team initiatives, controls assessments and more.

The ideal candidate is someone with cyber security experience, hands-on technical skills in Windows, Linux and Network security, along with experience in transforming threat intelligence into hypotheses for hunting across our network to proactively identify cyber threats


Job Responsibilities:

  • Leverage large volumes of security sensor log data to proactively hunt for previously undetected internal and external threats across multiple platforms.
  • Research and simulate adversarial tactics, techniques and procedures (TTPs) to conduct a technical assessment of the likely impact of these actors.
  • Participate in Purple and Red Team initiatives focused on testing evolving threat actors’ techniques and identifying solutions to improve the firm’s defensive capabilities.
  • Support priority incident investigations and threat intelligence discoveries with hunting expertize to identify the extent of any potential compromise.
  • Enable a world-class cyber defense program by working closely with other technical, vulnerability management, incident management, intelligence analyst and forensic personnel to develop a fuller understanding of the intent, objectives, and activity of cyber threat actors, and ultimately drive improvement to the organizations’ overall security posture.
  • Lead the security projects/tasks assigned by taking ownership of planning, implementation & coordination
  • Participate in a 24×7 coverage model to prevent and remediate security threats against Goldman Sachs’ global business network.

Basic Qualifications:

  • Strong English verbal and written communication skills
  • Strong presentation skills
  • Ability to multitask and prioritize work effectively
  • Highly motivated self-starter
  • Responsive to challenging tasking
  • Attention to detail
  • Strong sense of ownership and driven to manage tasks to completion
  • Experience of conducting hunting with multiple data sources using common hunt methodologies and tooling
  • Broad understanding of Windows and Linux Operating Systems, networking protocols and cloud computing

Preferred qualifications:

  • 1-4 years’ relevant cybersecurity experience with expertise in cyber threat hunting, investigations and data analysis



The Goldman Sachs Group, Inc. is a leading global investment banking, securities and investment management firm that provides a wide range of financial services to a substantial and diversified client base that includes corporations, financial institutions, governments and individuals. Founded in 1869, the firm is headquartered in New York and maintains offices in all major financial centers around the world.

More Information

Apply for this job

Leave your thoughts