Security Threat Hunter

Insight Global • Contract • Toronto, ON, CA • C$ 55 - C$ 63 / hour • 2w ago

Security Threat Hunter

Contract: 7 months + possibility of extension

Hybrid: 1 day/wk - Downtown Toronto

Rate: $50-63/hr

1 & Done Interviews: This Week!

Required Skills & Experience

- 3+ years working within cybersecurity operations at a large enterprise

- Specialized in cybersecurity experience in fields such detection engineering, SOC, preferably threat hunting

- Experience with SIEM tools such as Microsoft Sentinel

- Experience with Microsoft Defender Suite

- Experience with automation scripting such as Python, Powershell

- Experience with OS systems Linux and Windows

- KQL query language experience

- Good communication and ability to learn new methodologies

- Ability to stay current with threat trends and detection methodologies

Nice to Have Skills & Experience

Banking experience

- Experience conducting threat hunts using a hypothesis-based approach

- Familiarity with MITRE ATT&CK Framework tactics, techniques and procedures (TTPs)

- Experience with Jira and GitHub

- Experience with Jupyter Notebooks

- Category 1 banking experience

- CISSP or other relevant cyber security certifications

Job Description

Insight Global is looking for a threat hunter to join a large enterprise bank in Toronto. This consultant will be working as a threat hunter for a contract position within the Information Security line of business. This role is a hybrid position and requires 1-2 days on site downtown Toronto. This role will assist with developing and refining cyber threat detection techniques to enhance overall security posture, working with other Threat Hunters in 4-week agile cycles. The role involves executing threat hunts using established methodologies, collaborating on the development of hunt scenarios and communicating findings, analyzing security events and logs to identify potential threats, and validating detection techniques to improve accuracy. Additionally, the Threat Hunter will contribute to the enhancement of detection infrastructure through process improvements and automation, and maintain thorough documentation to ensure compliance with organizational requirements.