Cyber Threat Hunter, Lead
Booz Allen Hamilton
- Singapore
- Permanent
- Full-time
- 5+ years of experience with cybersecurity offensive or defensive technical operations, or national defense intelligence operations
- Experience with Advanced Persistent Threat (APT) hunting, penetration testing, digital forensics, SOC operations, or incident response
- Ability to profile and track malicious actors that pose a threat in coordination with threat intelligence support teams
- Ability to review and analyze security log files from various sources, including cloud, network, endpoint, or IdAM
- HS diploma or GED
- Experience with common threat-hunting solutions, tools, or techniques used to analyze malware, extract indicators, and create signatures
- Experience with Windows Enterprise security and systems administration, ATP, ATA, or Sentinel, and SIEM or SOC, including QRadar, SplunkES, and ArcSight
- Experience with data hunting, ELK, Splunk, Apache Spark, AWS Stack, and GCP
- Experience with scripting, REST APIs, and forensic tools, including FTK and Encase
- Experience with endpoint telemetry, Carbon Black, FireEye HX, Falcon, Tanium, and Endgame
- Possession of excellent verbal and written communication skills
- Possession of excellent presentation skills
- GIAC GCFA, GCFE, GREM, GNFA, GSNA, CISA, or OSCP Certification