Senior Cyber Security Threat Hunter

Dish Network Corporation Englewood , CO 80110

Posted 3 months ago

Summary

DISH is a Fortune 250 company with more than $13 billion in annual revenue that continues to redefine the communications industry. Our legacy is innovation and a willingness to challenge the status quo, including reinventing ourselves. We disrupted the pay-TV industry in the mid-90s with the launch of the DISH satellite TV service, taking on some of the largest U.S. corporations in the process, and grew to be the fourth-largest pay-TV provider. We are doing it again with the first live, internet-delivered TV service Sling TV that bucks traditional pay-TV norms and gives consumers a truly new way to access and watch television.

Now we have our sights set on upending the wireless industry and unseating the entrenched incumbent carriers.

We are driven by curiosity, pride, adventure, and a desire to win it's in our DNA. We're looking for people with boundless energy, intelligence, and an overwhelming need to achieve to join our team as we embark on the next chapter of our story.

Opportunity is here. We are DISH.

Job Duties and Responsibilities

The focus of the Cyber Security Threat Hunter is to proactively investigate security events in an effort to identify artifacts of a cyber-attack. They will also be expected to participate in several different areas within Security Operations and Incident Response process; these activities can include digital forensics, use case development, security control testing, and hunt plan development. The Threat Hunter will use data analysis, threat intelligence, and cutting-edge security technologies. Working within the Security Analysis and Operations Team at Dish Network, the Cyber Security Threat Hunter is responsible for reviewing system log events and data packets to proactively detect advanced threats that evade traditional security solutions The Threat Analyst will ensure that new environments are identified and understood to enable accurate and actionable reporting for other tiers. Threat Hunters will also participate in developing processes, procedures, training, etc. for new technologies. The candidate must have a curious investigative mind, an interest in information security, and the ability to communicate complex ideas to varied audiences.

  • Track threat actors, their tactics, techniques, and procedures (TTPs), and their associated Indicators of Compromise (IOCs)

  • Capture intelligence on threat actor TTPs/IOCs and coordinate with SecOps pods to develop countermeasures

  • Provide forensic analysis of network packet captures, DNS, proxy, Netflow, malware, host-based security and application logs, as well as logs from a variety of security sensors

  • Perform Root Cause Analysis of security incidents to develop enhancements to existing alerting tools

  • Compile detailed investigation and analysis reports for internal SecOps consumption and delivery to management

  • Assist in incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts

  • Develop advanced queries and alerts to detect adversary actions

#LI-NH1

Skills - Experience and Requirements

Required

  • 3+ years of experience in Information Security

  • 2+ years of experience with the incident response process, including detecting advanced adversaries, log analysis using SIEM, and malware triage

  • Experience with packet analysis and usage of deep packet inspection toolsets.

  • Knowledge and experience working with the Cyber Kill Chain Model, Diamond Model or MITER ATT&CK Matrix.

  • Familiarity with EDR/SOAR/Anomaly detection solutions

Desired

  • Prior experience working with in the following areas:

  • Computer Incident Response Team (CIRT)

  • Computer Security Incident Response Center (CSIRC)

  • Security Operations Center (SOC)

  • Experience with APT/crimeware ecosystems

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Cyber Architect

Lockheed Martin Corporation

Posted 2 months ago

VIEW JOBS 12/13/2019 12:00:00 AM 2020-03-12T00:00 Description:The coolest jobs on this planet… or any other… are with Lockheed Martin Space. At the dawn of a new space age, Lockheed Martin Space is a pioneer, partner, innovator and builder. Our amazing men and women are on a mission to make a difference in the world. Every single day we use our unique skills and experiences to craft, design and build solutions to some of the worlds' hardest engineering problems. Our culture inspires employees to dream big, perform with excellence and build incredible products. We provide the resources, support, and the focus. You bring the passion and courage to envision limitless possibilities and we'll build a better tomorrow with you. * Support the Space System Cyber Center of Excellence Architecture Analytics and Intelligence organization by providing cyber security consulting across multiple programs. * Assist programs with secure architecture design and resiliency as well as participate in the development of proposals to build cyber resiliency into solutions. * Perform Cyber Resiliency evaluations (CREs), including cyber table tops and penetration testing. * Develop thorough reports on findings with mitigation steps to fix difficult problems. Basic Qualifications: * Thorough understanding of TCP/IP and common protocols such as SSH, HTTP/S, SMTP, RDP, DNS, S/FTP, DHCP, CIFS/NetBIOS, LDAP, or SNMP. * Microsoft Windows, Linux (RHEL, Ubuntu), Solaris. * Solid understanding of Windows Active Directory, Group Policy, Configuration Management as well as common services such as SCCM, IIS, Exchange, Domain Controllers, etc. * Basic Scripting and/or Development Languages, such as Python or Shell Scripting. Desired Skills: * Extensive experience in one or more cyber domains, such as network security architecture, defensive cyber, software security, DoD security, forensics/IR * Experience in conducting a wide variety of penetration testing activities including network penetration testing, web application penetration testing, wireless penetration testing and some user awareness (social engineering) testing. * Hardware reverse engineering and tamper/antitamper testing. * Experience in space, ground and vehicle architectures. * Broad background in information security tools, concepts and issues across a broad range of technologies. * Reverse Engineering Malware. * Familiar with secure software design and architecture. * Expertise in Software and Application Security Concepts with the ability to conduct code reviews. * Reverse Engineering in IDA Pro, OllyDbg and Assembly Language. * Software Development in C, C++. To promote the sharing of ideas, Lockheed Martin champions an inclusive work environment that encourages differences and big-picture thinking. Our employees play an active role in strengthening the quality of life where we live and work by volunteering more than 850,000 hours annually. Benefits you can enjoy include: * Medical * Dental * 401k * Paid time off * 25 three-day weekends * Work/life balance * Career development * Mentorship opportunities * Rewards & recognition Learn more about Lockheed Martin's competitive and comprehensive benefits package. Join us at Lockheed Martin, where your mission is ours. Our customers pursue the hardest missions. Those that demand exceptional amounts of courage, resilience and precision. They're dangerous. Critical. Sometimes they even provide an opportunity to change the world and save lives. Those are the missions we care about. Lockheed Martin Corporation Englewood CO

Senior Cyber Security Threat Hunter

Dish Network Corporation