Senior Info Sec Threat Hunting Specialist
$84,800 - $126,600/Yr
TIAA - Frisco, TX
posted 27 days ago
Full-time - Senior
Frisco, TX
Securities, Commodity Contracts, and Other Financial Investments and Related Activities
About the position
The Senior Information Security Threat Hunting Specialist is responsible for identifying and reporting threats or hidden events within the enterprise network. This role involves using defensive measures and information from various sources to protect the company's data, information systems, and networks. The specialist will also work on improving existing protection systems by monitoring both internal controls and external threats, identifying potential data leaks, and determining if incidents violate policies and standards.
Responsibilities
- Determines potential threats and anomalous or malicious activities to network resources by examining and analyzing network traffic.
- Reviews and conducts cost/benefit evaluation of cloud solutions compared to virtual private networks, dedicated hosting, and in-house solutions.
- Determines the technical feasibility of adopting external cloud-based IT platform and infrastructure services within the organization.
- Leads the identification of portions of the organization's IT platform/infrastructure with the highest potential return for cloud deployment.
- Implements the organization's global strategies and initiatives to enhance Information Technology plans, operations, and procedures.
- Verifies Intrusion Detection System (IDS) alerts as they occur.
- Researches and analyzes various source data sets and identified malicious activities to analyze the root cause and network weaknesses.
- Discovers current weaknesses and exploitation methods, along with the residual effects on IT systems and information through root-cause analysis.
- Reviews reports and documents regarding security incidents details and outcomes.
- Participates in troubleshooting problems and recommending vulnerability conditions.
- Partners with security architecture, network engineering, and desktop delivery on implementing and improving security controls.
- Monitors internal and external threat environments on a continual basis to best protect the organization's assets.
Requirements
- 3+ years in Technical Support Role (Help Desk, SOC, and/or Desktop/Server Support)
- Experience with SIEM (Splunk, ArcSight, or QRadar)
- Experience leading technical projects
Nice-to-haves
- Strong communication and leadership skills
- Experience scripting and automation
Benefits
- Comprehensive Total Rewards package
- Superior retirement program
- Highly competitive health, wellness, and work-life offerings
