Cyber Threat Investigator

Posted 02 Oct 2019

Bratislavsky kraj - all, Bratislavsky kraj - Slovakia

Req Id 198471

Details

A career in our company is an ongoing journey of discovery: our 52,000 people are shaping how the world lives, works and plays through next generation advancements in healthcare, life science and performance materials. For more than 350 years and across the world we have passionately pursued our curiosity to find novel and vibrant ways of enhancing the lives of others.A career in our company is an ongoing journey of discovery: our 52,000 people are shaping how the world lives, works and plays through next generation advancements in healthcare, life science and performance materials. For more than 350 years and across the world we have passionately pursued our curiosity to find novel and vibrant ways of enhancing the lives of others.


Job Description :

 

The Threat hunting Team is seeking a motivated individual with strong technical competency that will research and implement detection measures

using data from a wide spectrum of sources. The candidate will also perform opportunistic threat hunting and forensic analysis when required during incidents.

 

Qualifications:

 

  • Prior experiences in SOC are a must
  • Network traffic analysis and host based log analysis
  • Comprehensive understanding of enterprise Windows security (Active Directory)
  • Static and Dynamic malware analysis
  • Disk and Memory forensics
  • Practical knowledge in at least one scripting or development language (e.g. PowerShell or Python)
  • Strong written and verbal communication skills
  • Strong understanding of common enterprise technologies

 

Responsibilities:

 

  • Use Network and Host Based data to drive detection, monitoring, and response capabilities
  • Create detection analytics based off the MITRE ATT&CK Framework and other security frameworks
  • Perform unique research on adversarial Tools, Techniques, and Procedures (TTPs)
  • Scout Dark Web and gather intel from various Cybersecurity related sources
  • Work closely with our Threat IQ Vendor on securing Merck’s IP
  • Be an important part of the SOC and provide assistance to the Incident Response team in response on incidents by analyzing host behavior and network traffic
  • Perform static and dynamic malware analysis to feed Indicators of Compromise into the Incident Response process

 

What we offer: In our company, there are always opportunities to break new ground. We empower you to fulfil your ambitions, and our diverse businesses offer various career moves to seek new horizons. We trust you with responsibility early on and support you to draw your own career map that is responsive to your aspirations and priorities in life. Join us and bring your curiosity to life!

Apply Now

Let’s stay connected

Do you want to receive company news and information about career opportunities tailored to your preferences? Sign up here. You want to check the status of your application or change your candidate profile? Enter our job portal.

Redirect

You have accessed https://www.emdgroup.com, but for users from your part of the world, we originally designed the following web presence https://www.merckgroup.com.

Let's go

Share Disclaimer

By sharing this content, you are consenting to share your data to this social media provider. More information are available in our Privacy Statement