Current jobs related to Principal Threat Hunter - Kitchener, Ontario - opentext

Principal Threat Hunter

Join OpenText, a global leader in information management, where innovation, creativity, and collaboration drive our corporate culture. As a Principal Threat Hunter, you will be part of a team that leverages people, processes, and technology to deliver world-class threat detection and protection for our customers and their data.

The Threat Hunt Team is at the forefront of behavioral threat detection, helping companies protect against insider threats and accurately identify emerging threats. We work tirelessly to drive improvements across our security services and accelerate our customers' digital journey in a safe and trusted environment.

Your Impact:

As a key contributor, you'll be instrumental in utilizing behavioral analytics and advanced threat-hunting technologies to detect and analyze emerging threats, define attack paths, and track threat actors and their tactics. You will help to extract data and remove noise to pinpoint internal and external threats, making a significant impact on our customers' security posture.

Key Responsibilities:

• Recognize patterns and anomalies in large datasets.
• Integrate and interpret threat intelligence feeds for proactive hunting activities.
• Proactively search for and detect threats using an understanding of common attack techniques.
• Leverage advanced analytics for User Behavior Analysis to detect anomalies indicating potential security threats.
• Identify and respond to suspicious activities and malicious incidents, providing detailed reports and explanations to stakeholders.
• Continuously learn about new threats, tools, and techniques, while applying strong analytical thinking, problem-solving abilities, and effective communication skills.
• Able to work in shifts and weekends, and potential occasionally travel as/if required.

Requirements:

• Effective communication skills, both written and verbal, with the ability to present complex security issues to technical and non-technical audiences.
• 12 to 15 years of previous professional experience in IT and/or in cybersecurity, with at least 3 years in threat hunting, incident response, or a related field.
• Deep understanding of malware methods, attack tactics, and threat actor Tactics, Techniques, and Procedures (TTPs).
• Strong familiarity with attacker tradecraft and client relationships.
• Proficiency in utilizing EDR/SOAR/Anomaly detection solutions.
• Experience in incident response, including advanced adversary detection and log analysis.
• Extensive knowledge of Operating Systems, network security concepts, and protocols.
• Strong familiarity with Cyber Kill Chain Model and MITRE ATT&CK Matrix is an asset.
• CISSP, GCIH, CISA, CISM, GIAC certification in Forensic or Defense, or other industry certifications preferred.

About OpenText:

OpenText is more than just a corporation, it's a global community where trust is foundational, the bar is raised, and outcomes are owned. We don't just have a culture; we have character. We're a company that embraces innovation and empowers our employees to make a difference. Our Employment Equity and Diversity Policy provides direction on maintaining a working environment that is inclusive of everyone, regardless of culture, national origin, race, color, gender, gender identification, sexual orientation, family status, age, veteran status, disability, religion, or other basis protected by applicable laws.