Colgate 12 Consulting - Allentown, PA
posted 25 days ago
Full-time - Mid Level
Allentown, PA
About the position
The Threat Hunter position at Colgate 12 Consulting LLC involves proactively identifying, analyzing, and mitigating advanced security threats to protect clients' assets. The role requires leveraging cutting-edge tools and techniques to uncover sophisticated cyber threats, enhance detection capabilities, and provide actionable insights to fortify defenses. The position operates on a 3pm-11pm shift and is critical in maintaining the security posture of client environments.
Responsibilities
- Conduct proactive hunting activities to identify potential threats, anomalies, and malicious activity within client environments.
- Leverage threat intelligence, behavioral analytics, and advanced forensic tools to uncover hidden threats.
- Investigate indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) used by threat actors.
- Collaborate with incident response teams to analyze and contain threats.
- Provide in-depth analysis of malware, phishing campaigns, and advanced persistent threats (APTs).
- Recommend remediation actions to mitigate risks and prevent future occurrences.
- Enhance existing detection systems by fine-tuning security tools, such as SIEM, EDR, and IDS/IPS.
- Develop and implement custom scripts, automation workflows, and tools for threat detection and analysis.
- Work closely with clients' IT and security teams to improve overall security posture.
- Provide detailed reports and presentations on threat hunting findings, trends, and actionable recommendations to internal and client upper management.
- Contribute to threat intelligence sharing and collaboration across the organization and with external partners.
- Stay updated on emerging threats, attack vectors, and technologies in the cybersecurity landscape.
- Develop and document new threat-hunting methodologies and share knowledge with the team.
Requirements
- Bachelor's degree in cybersecurity, computer science or related field or equivalent work experience.
- 5+ years of experience in cybersecurity, with a focus on threat hunting, incident response, or threat intelligence.
- Strong understanding of the cyber kill chain, MITRE ATT&CK framework, and TTPs of advanced threat actors.
- Proficiency in using security tools such as SIEM, EDR, and threat intelligence platforms.
- Experience with scripting and automation using languages like Python, PowerShell, or Bash.
- Knowledge of network protocols, system logs, and endpoint security.
- Certifications such as GIAC Cyber Threat Intelligence (GCTI), Certified Threat Hunting Professional (CTHP), or similar are a plus.
Nice-to-haves
- Strong teamwork and collaboration skills.
- Excellent analytical and effective problem-solving skills.
- Excellent verbal and written communication skills.
- Ability to think critically and creatively to solve complex security challenges.
- Self-motivated and detail-oriented with a passion for cybersecurity.
