Threat Hunting - Information Security

JD for Threat Hunting Role: -

A threat hunting role at HDFC Bank involves proactively searching for and identifying advanced cyber threats within enterprise environments using cutting-edge security tools and threat intelligence.

Threat hunters collaborate with other teams like incident response, threat intelligence, IT, application owners to improve security posture of HDFC Bank by identifying new threats and techniques and misconfigurations.

Threat hunters also develop new tools and techniques, improve existing ones, and share their findings to enhance the overall security.

Key Responsibilities: -

Proactive Threat Hunting:

Actively search for signs of malicious activity that may not be detected by traditional security systems.

Cyber Threat Intelligence:

Utilizing threat intelligence from various sources to identify potential threats and understand adversary tactics.

Behavioural Analysis:

Analysing system behaviour and network traffic to identify anomalies that could indicate malicious activity.

Data Analysis:

Analyse large datasets from various sources (endpoints, identities, cloud, network) to identify anomalies and potential threats.

Tool Development:

Contribute to the development of new threat hunting tools, automations, and capabilities.

Mitigation Strategies:

Develop and recommend mitigation strategies to address identified threats and improve overall security posture.

Cross-Disciplinary Collaboration

Working with incident response, threat intelligence, and other teams to share findings and coordinate response efforts

Staying Ahead of Threats:

Researching and experimenting with new hunting techniques to identify and mitigate emerging threats

Communication:

Effectively communicating findings and recommendations to various stakeholders and cybersecurity leadership.

Key Skills and Experience: -

· Minimum experience of 7+ years in Threat Hunts/Incident response

· Strong cybersecurity knowledge, including incident response, threat intelligence, network security, Forensics, OS Internals.

· Strong understanding of threat landscapes, and attack methodologies.

· Experience with threat intelligence platforms, security monitoring tools, and SIEM solutions.

· Proficiency in data analysis and correlation techniques to identify malicious activity.

· Ability to develop and implement new threat hunting techniques and tools.

· Excellent communication and collaboration skills.

· Excellent analytical and problem-solving skills.

· Experience with threat hunting methodologies and techniques.

· Excellent understanding of cloud attack & defence

· Understanding of how advance APTs works translate OSINT information in meaningful hunt

· Able to analyse large data using data analytics.

· Proficiency with Python, KQL, SQL, XQL

· Bachelor’s degree in computer science, Cybersecurity, or a related field.

· Relevant certifications (e.g., CISSP, GCIH, GCFA, GCFR) are a plus.