Threat Intelligence Analyst

Threat Hunter/Security Analyst

About the Role:

We are seeking a highly skilled and experienced Threat Hunter to deliver services under a Statement of Work (SOW). The successful candidate will be a single, dedicated resource responsible for conducting threat-hunting activities, analyzing security events, and contributing to the improvement of our security posture. This role requires a strong understanding of threat-hunting methodologies, excellent analytical skills, and the ability to communicate effectively with both technical and non-technical audiences.

Responsibilities:

• Conduct proactive threat hunting using established methodologies.
• Develop and execute Splunk queries (SPL) for security event analysis.
• Analyze Sysmon events to identify malicious activity.
• Perform in-depth analysis of Windows forensic artifacts, including Windows Event Logs, User Access Logging (UAL), and Master File Table (MFT).
• Analyze network traffic and protocols to detect anomalies and potential threats.
• Collaborate effectively in internal meetings and discussions to enhance service quality.
• Provide clear and concise reporting to various levels of seniority.
• Maintain meticulous attention to detail and accuracy in all work.

Required Qualifications:

• Proven experience in threat hunting and associated methodologies.
• Demonstrable experience writing Splunk queries using SPL.
• Experience analyzing Sysmon events.
• Solid understanding of networking protocols.
• Experience analyzing Windows forensic artifacts (Windows Event Logs, UAL, MFT, etc.).
• English language proficiency meeting or exceeding NATO STANAG 6001 Level 3 “Professional Proficiency”.
• Ability to dress appropriately for meetings with high-ranking officials (no religious signs to be worn during such meetings).

Preferred Qualifications (Assets):

• Knowledge of Python and/or PowerShell scripting.
• Experience with Fidelis EDR.
• Familiarity with THOR and the Asgard analysis cockpit.
• Previous experience working for or supporting a military or governmental organization.

Personal Attributes:

• Strong reporting and communication skills.
• Accuracy and attention to detail.
• Collaborative and proactive approach.