Published: Mon, 16 Dec 2024 18:50:14 GMT
Position: Senior Threat Hunter
Location: Remote, Canada
Company Overview:
Sophos is a leading global provider of advanced security solutions, including Managed Detection and Response (MDR) and incident response services, as well as a wide range of endpoint, network, email, and cloud security technologies. With a focus on defeating cyberattacks, Sophos defends over 600,000 organizations and 100 million users worldwide. Powered by Sophos X-Ops, their cross-domain threat intelligence unit, Sophos offers a comprehensive cybersecurity ecosystem that includes a centralized data lake and open APIs for customers, partners, developers, and other cybersecurity vendors. They also provide fully managed security solutions and a hybrid approach, allowing organizations to supplement their in-house teams with Sophos’ services, including threat hunting and remediation. Headquartered in Oxford, U.K., Sophos sells through reseller partners and managed service providers (MSPs) globally.
Role Summary:
Sophos is seeking a highly experienced Cyber Threat Hunter to join their MDR Team. This role requires advanced knowledge and expertise in cybersecurity and the ability to identify adversary behaviors that may have bypassed detections. The successful candidate will have a thorough understanding of all scopes of threat actor activity on various endpoints and will play a critical role in improving Sophos’ Adaptive Cybersecurity Ecosystem. This position can be worked remotely from Canada.
Key Responsibilities:
– Plan and execute proactive threat hunts across all MDR customers.
– Document all threat hunt activities and provide detailed feedback to detection teams.
– Stay up-to-date with the latest internal and external intelligence to inform hunt planning.
– Support ad-hoc and long-term projects to improve threat hunting processes and technical capabilities.
– Act as a resource for junior analysts during active incidents.
Qualifications:
– 5+ years of experience as a Threat Hunter, Incident Response, or Detection Analyst.
– Strong experience analyzing operating system and application logs, including the ability to identify suspicious activity.
– Expertise in developing complex search queries, including the use of SQL and RegEx.
– Knowledge of statistical techniques for identifying anomalies in large data sets.
– Strong critical thinking and problem-solving skills.
– Excellent communication skills, both written and verbal, with the ability to effectively communicate with technical, operational, and senior client staff.
– Experience providing briefings to executive leadership.
– Familiarity with working closely with detection teams to create preventative or alerting rules.
– Cybersecurity certifications (preferred).
– BA or BS degree (preferred).
Compensation:
– Base salary ranges from $121,000 to $201,000, depending on factors such as skills, experience, and location.
– Additional compensation, including bonus eligibility and a comprehensive benefits package, is also offered.
Ready to Join Us?
At Sophos, we believe in the power of diverse perspectives to fuel innovation. We encourage candidates to apply even if they do not meet all of the requirements listed in this job description.
What’s Great About Sophos?
– Remote-first working model, with some roles requiring a hybrid approach.
– Fun and collaborative team environment.
– Employee-led diversity and inclusion networks.
– Annual charity and fundraising initiatives and volunteer days.
– Global employee sustainability initiatives.
– Global fitness and trivia competitions.
– Global wellbeing days.
– Monthly wellbeing webinars and training.
Our Commitment To You:
At Sophos, we are committed to ensuring equality of opportunity and a diverse and inclusive workplace. All applicants will be treated fairly and equally regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity, or sexual orientation. We want to give all candidates the opportunity to showcase their skills and experiences, so if there are any adjustments we can make to the recruitment and selection process to support you, please let us know.
Data Protection:
If you choose to apply for a position at Sophos, your CV and personal details will be held for 12 months in accordance with our Privacy Policy. This information will be used by our recruitment team to contact you regarding this or other relevant opportunities at Sophos. If you would like Sophos to delete or update your details at any time, please follow the steps outlined in our Privacy Policy. If you have any questions about Sophos’ data protection practices, please contact dataprotection@sophos.com. Apply link