This page was automatically translated and may contain errors. View in English.
malomatia

SOC Thread Specialist

malomatia

Doha, Doha Municipality, Qatar · 全职

抢先申请

经验
10年以上经验
薪水
职位空缺
1
发布
6小时前
工作模式
在办公室
学历
学士学位
恢复
需要申请

你的工作地点

职位描述

Overview

This role centers on safeguarding the organization's IT and OT infrastructures by vigilantly identifying, examining, and proactively seeking out cyber threats. The position requires collaboration with the SOC team to bolster the organization's cyber defense capabilities through actionable threat detections and intelligence integration.

Key Duties

  • Conduct proactive threat hunting activities across IT and OT networks using intelligence to detect hidden or unnoticed threats.
  • Analyze and correlate security events to decipher attacker behaviors, techniques, and campaign trends beyond basic alerts.
  • Translate threat intelligence, including Indicators of Compromise (IOCs), Tactics, Techniques, and Procedures (TTPs), into actionable detection initiatives for SOC Engineers.
  • Perform in-depth investigations on critical alerts, ascertain root causes, and provide informed recommendations along with technical reports summarizing findings for management.
  • Assist incident response teams during containment and eradication by offering insights on attacker tools, tactics, and infrastructure.
  • Work jointly with SOC Engineers to improve SIEM use cases, detection rules, and SOAR playbooks based on threat hunting insights.
  • Undertake malware reverse engineering and behavior analysis to extract IOCs, develop YARA rules, and contribute findings to detection and hunting strategies.
  • Create and maintain detailed threat profiles covering main adversaries and attack methods targeting IT and OT systems.
  • Remain updated with evolving threats, tools, and frameworks such as MITRE ATT&CK to enhance analytic methods.
  • Adhere to legal and ethical standards to ensure authorized operations without damaging the organization's reputation.

Qualifications and Experience

  • Bachelor’s degree in information security, computer science, or engineering.
  • Professional certifications like GCTI, GCIA, GCIH, or GREM.
  • A decade of experience in information security in a comparable role.
  • Demonstrated expertise in cyber threat analysis, hunting, and incident investigation within IT and OT environments.
  • Comprehensive knowledge of network protocols, malware analysis, adversary tactics aligned with MITRE ATT&CK.
  • Hands-on experience with SIEM/SOAR tools, threat intelligence solutions, and log analysis techniques for advanced detection.
  • Proficient analytical skills and practical threat hunting experience.
  • Competence in malware reverse engineering using static and dynamic tools such as Ghidra, IDA Pro, or x64dbg, and IOC extraction.

Technical and Communication Skills

  • Strong ability to assess risks, understand legislative impacts, and promote regulatory compliance.
  • Good grasp of relevant IT and OT business applications.
  • Effective communicator both in writing and verbally with persuasive abilities.

如果您希望收到回复,请留下您的信息——我们不会将您的信息用于其他用途。

点击浏览拖放,或 粘贴 截图

PNG、JPG、GIF、MP4、WebM、MOV 格式 · 每个文件最大 20MB · 最多 5 个文件

🤖
在线·即时人工智能帮助