Senior Technical Analyst - Cyber Threat Hunting Analyst

 Location: IN - Bangalore 24/7, IN - Bangalore | Job-ID: 214593 | Contract type: Standard | Business Unit: IT Consulting

Life on the team

Placed within our Security Operations function, our Cyber Threat Operations Team play an essential role in protecting Computacenter from the latest threats and threat actors. The Cyber Threat Operations Team work to ensure we have a forward-looking mentality to identify emerging threats and trends. Our team brings together a diverse set of specialist skills, including Threat Intelligence, Threat Hunting, Malware Analysis, Digital Forensics, Incident Response, and Threat Modelling. At our core, we are driven by a mission to “investigate, collate and locate”: to unearth new threats, collate all available information about them, and then seek them out and respond appropriately.  The aim of the Cyber Threat Operations Team is to ensure the wider security division is one step ahead of security threats by applying technical knowledge and understanding of global events to produce relevant, actionable intelligence. The Cyber Threat Operations Team understand how threats feed into business risks. We lead on collecting, evaluating, and analyzing all sources of information to produce finished Threat Intelligence to help inform Computacenter and minimize the risk of harm.  

We are now looking for an experienced Threat Hunt Analyst to join our team. In this role you will be responsible for the prioritization, gathering and analyzing malware samples associated to emerging threats, and then disseminating your findings to relevant teams for appropriate action. 

What you’ll do

• Support threat hunting team in day-to-day checklist(s), including log review, alert analysis, and investigation enrichment.
• Support the improvement and development of new threat hunt queries based on observed and measured cyber threat activity.
• Remain current on threats, exposures and mitigations (APT, zero days, Methods & tactics) that could impact Computacenter; Deliver specialist investigation and analysis on cyber security incidents to support the Computacenter Cyber Security Incident Response Team (CSIRT)
• Maintenance of tooling to ensure the smooth running CTH services
• Create hypotheses, generate structured plans and conduct threat hunts for given threats.
• Create and maintain standard library of repeatable hunting queries to search for common attack techniques
• Generate reports on discovered threats
• Documentation of processes and services delivered by the team. 

What you’ll need

• Experienced in Information and Cyber Security, including a SOC.
• Experienced in common open and closed source intelligence tools and technologies.
• Experienced in adversary tactics and techniques frameworks such as Mitre ATT&CK and Killchain.
• Experienced in common SOC SIEM technology applications such as MS Sentinel.
• Experienced in KQL, with ability to formulate advanced queries.
• Experienced in investigating security breaches and security incident management.
• Knowledge of specialist security technologies including CIS Benchmarks, Tenable etc.
• Knowledge of specialist threat information sharing including STIX, TAXII, CISSP etc.
• Knowledge of network topologies and protocols. Knowledge of security risk management, incident response and crisis management.
• Communicates in a clear straightforward way (written and verbally)
• Ability to present complex technical details in a simple business context
• Excellent written and verbal English
• Take responsibility for own actions and ability to perform in a structured manner and to strict deadline.

About us

We are a leading independent technology and services provider, trusted by large corporate and public sector organisations. We are a responsible business that believes in winning together for our people and our planet. We help our customers to source, transform and manage their technology infrastructure to deliver digital transformation, enabling people and their business.

Our business may be about technology, but first of all it’s about people

With over 20,000 people across 22 countries, we are proud of our inclusive culture - where everyone can thrive, feel valued, and truly belong.

As an equal opportunities employer, we’re committed to ensuring fair and equal access to opportunities for all. Your application will be considered on its merits, regardless of your age, disability, ethnicity, gender identity, or any other characteristics protected by law. What matters most to us is that you share our vision and values, and bring the experience and skills we’re looking for.

We are proud to be a Disability Confident Employer. We welcome applications from disabled people and accept applications in alternative formats. We also guarantee to interview applicants who have a disability.

If you share our values and want to make a meaningful impact in a supportive, forward-thinking environment - we’d love to hear from you!