Core Specialty Insurance Services, Inc.
Senior Cyber Threat Analyst
Core Specialty Insurance Services, Inc., Cincinnati, Ohio, United States, 45208
-
We are seeking a
Senior Cyber Threat Analyst
to join our Security team. This role will focus on proactive threat hunting, detection engineering, threat intelligence and email security. Key Accountabilities/Deliverables: Create detections based on adversary tactics, techniques and procedures that are known to evade security tools
Lead recurring threat hunting plans
Provide daily threat Intelligence reports and stay current with ever evolving threats
Collaborate with the Security Operation, Security Engineering, and Vulnerability Management teams
Participate in incident response and remediation efforts
Contribute to and create standard operating procedure documents
Create and design automation workflows
Conduct email-security-based threat hunts
Provide ad-hoc OSINT requests
Lead third party investigations
Conduct user investigations
Mentor junior level analysts
Action penetration testing findings
Provide/create monthly threat reports for executive leadership
Technical Knowledge and Understanding: Ability to translate potential indicators of compromise and threat intelligence into actionable detections
Hacker mindset
Familiarity with MITRE ATT&CK framework and adversary simulation techniques
Intuitive understanding of systems and the ability to spot potential patterns
Excellent communication and collaboration skills
Experience: 5+ years of experience in threat operation roles
Proficiency writing KQL queries and working with workbooks
Systems administration and/or IT support experience preferred.
GIAC Cyber Threat Intelligence (GCTI) certification preferred.
GIAC Certified Incident handler (GCIH) certification preferred.
CompTIA Security+ certification preferred.
CompTIA Cybersecurity Analyst (CySA+) certification preferred.
Applicants must be authorized to work for any employer in the U.S. We are unable to take over sponsorship of an employment Visa for this position.
#LI-Hybrid - At Core Specialty, you will receive a competitive salary and opportunities for professional development and advancement. We offer medical, dental, vision, and life insurances; short and long-term disability; a Company-match of 100% of a 6% contribution 401(k) plan; an Employee Assistance Plan; Health Savings Account, Flexible Spending Account, Health Reimbursement Account, and a wellness program
Senior Cyber Threat Analyst
to join our Security team. This role will focus on proactive threat hunting, detection engineering, threat intelligence and email security. Key Accountabilities/Deliverables: Create detections based on adversary tactics, techniques and procedures that are known to evade security tools
Lead recurring threat hunting plans
Provide daily threat Intelligence reports and stay current with ever evolving threats
Collaborate with the Security Operation, Security Engineering, and Vulnerability Management teams
Participate in incident response and remediation efforts
Contribute to and create standard operating procedure documents
Create and design automation workflows
Conduct email-security-based threat hunts
Provide ad-hoc OSINT requests
Lead third party investigations
Conduct user investigations
Mentor junior level analysts
Action penetration testing findings
Provide/create monthly threat reports for executive leadership
Technical Knowledge and Understanding: Ability to translate potential indicators of compromise and threat intelligence into actionable detections
Hacker mindset
Familiarity with MITRE ATT&CK framework and adversary simulation techniques
Intuitive understanding of systems and the ability to spot potential patterns
Excellent communication and collaboration skills
Experience: 5+ years of experience in threat operation roles
Proficiency writing KQL queries and working with workbooks
Systems administration and/or IT support experience preferred.
GIAC Cyber Threat Intelligence (GCTI) certification preferred.
GIAC Certified Incident handler (GCIH) certification preferred.
CompTIA Security+ certification preferred.
CompTIA Cybersecurity Analyst (CySA+) certification preferred.
Applicants must be authorized to work for any employer in the U.S. We are unable to take over sponsorship of an employment Visa for this position.
#LI-Hybrid - At Core Specialty, you will receive a competitive salary and opportunities for professional development and advancement. We offer medical, dental, vision, and life insurances; short and long-term disability; a Company-match of 100% of a 6% contribution 401(k) plan; an Employee Assistance Plan; Health Savings Account, Flexible Spending Account, Health Reimbursement Account, and a wellness program