This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Synchrony - Stamford, CT
posted 2 months ago
Full-time - Senior
Remote - Stamford, CT
Credit Intermediation and Related Activities
About the position
The VP, Senior Threat Informed Defense Engineer will play a crucial role in the Threat Informed Defense Team, focusing on assessing emerging cyber threats and developing advanced detection controls. This position requires a deep understanding of cyber threats and the ability to analyze data to identify opportunities for preventative and detective improvements. The ideal candidate will thrive in a collaborative environment and be passionate about cybersecurity.
Responsibilities
- Assess emerging cyber threats and develop novel detective controls utilizing advanced techniques.
- Maintain expert knowledge of attacker tradecraft and forensic presentation of Tactics, Techniques, and Procedures (TTPs).
- Develop advanced detection logic using various query languages or statistical methodologies.
- Perform impactful data analysis and exploration to produce timely recommended actions.
- Test TTPs within a secure lab setting and develop custom detection content to address identified gaps.
- Foster cross-functional collaboration across IS teams to enhance detection alerting strategies.
- Design detection pipelines, refine alert mechanisms, and automate alerting and response processes.
- Remain current on Incident Response procedures and identify relevant log sources for effective detection mechanisms.
- Mentor and train team members, documenting findings and presenting briefings to stakeholders.
Requirements
- Experience in threat intelligence, threat hunting, or red team capacity utilizing threat intelligence and attack-focused frameworks.
- Ability to communicate complex information clearly through verbal, written, and visual means.
- Experience developing advanced detection content.
- Ability to function effectively in a dynamic, fast-paced environment.
Nice-to-haves
- Applicable Information Security professional certifications (e.g., SANS, ISC2) and tool-specific certifications.
- Agile and code development experience.
Benefits
- Annual bonus based on individual and company performance.
- Remote work flexibility or option to work from the office.
