Commonwealth Financial Network

Threat Hunt Analyst

Job Locations US-CA-San Diego
Job ID
SD/W-2021-191
# of Openings
1
Category
Technology- Information Security
Type
Permanent/ Full-Time

Overview

Are you seeking a challenge in a growing business? Do you provide indispensable services to user communities and actively partner with them for success? Our Information Security Operations team is looking for an experienced threat hunt analyst, who will be critical to maintaining active operational capabilities and providing excellent services in defending Commonwealth infrastructure and clients. 

 

As a threat hunt analyst, you will be a key member of the Information Security Operations team, conducting continual threat hunting across our infrastructure and supported clients. You will help identify threats that might affect or are currently affecting the enterprise infrastructure and aggressively pursue the threat as appropriate. You will also work collaboratively with the Information Security Operations team to ensure that security solutions and services are designed and adopted effectively.

 

Key Responsibilities 

  • Serving as an individual contributor and subject-matter expert on the Security Operations team
  • Prioritizing threat hunting hypotheses
  • Researching trending campaigns, attack vectors, and searching for this activity in the Commonwealth environment
  • Responding to investigation requests regarding vulnerabilities, zero days, and security incidents
  • Hunting for new patterns, activities, and evolving tactics associated with advanced threat actors
  • Providing security information and event management (SIEM) content development and testing support
  • Creating and documenting new techniques, automation processes, and procedures
  • Proactively analyzing and reviewing external threat intelligence feeds; determining relevance for Commonwealth and our stakeholders; evaluating content for future mitigation or detection
  • Monitoring open source and commercial threat intelligence for IOCs and TTPs
  • Providing simple and reusable hunt tactics and techniques for a team of security engineers, SIEM specialists, and security operations center (SOC) analysts
  • Supporting the SOC to contain and investigate major incidents, facilitating incident response improvements.

Core Strengths 

  • Working knowledge of common frameworks such as MITRE ATT&CK, Cyber Kill Chain, Diamond Model, or similar
  • Experience with operational security, including SOC, incident response, malware analysis, or IDS and IPS analyses
  • Familiarity with NetFlow data, DNS logs, Proxy Logs
  • Ability to analyze malware, extract indicators, and create signatures in YARA, Snort, and IOCs
  • Strong analytical skills and the ability to effectively research, write, communicate, and brief to varying levels of audiences
  • Awareness of the current state of security adversary tactics and trends
  • Understanding of the best practices, control frameworks, and applicable existing and new legal and regulatory requirements (i.e., SEC S-P Rule, FINRA cybersecurity recommendations, data privacy and breach notification laws, ISO 27001, NIST CSF and SP 800-53, CIS, CSA CCM, PCI DSS)

Additional Skills and Knowledge 

  • Bachelor’s degree in information security systems or a related discipline, or equivalent training
  • 3+ years of related work experience in a threat intelligence, threat hunt, penetration testing, or similar role
  • Experience with securing and hardening IT infrastructure
  • Experience or familiarity with Azure Sentinel, ELK, SentinelOne, TheHive, SpiderFoot, Anomali, Splunk, syslog-ng, OSINT threat solutions
  • CISSP, SANS GCTI, CCSP, GCFA, GCFE, GREM, GNFA, or OSCP certifications
  • Demonstrated or advanced experience with computer networking and operating systems

Have we piqued your curiosity? Can you see yourself thriving in this opportunity? Let’s introduce ourselves. 

 

Picture Yourself Here  

Imagine keeping company with big thinkers and even bigger doers who share a common purpose to make a profound difference. Figure in an experience-it-to-believe-it culture, massive growth potential, and benefits galore, and you get the full impression. 

 

We are committed to providing a supportive, equitable environment where you can bring your full, authentic self to your work every day and truly thrive in meaningful ways—personally and professionally. At Commonwealth, everyone plays a part in our success story. And in building a more diverse and inclusive workplace, we are broadening our perspectives and capabilities. Together, our potential is limitless. We invite you to join us on the path to a brighter future!

  

About Commonwealth  

Commonwealth Financial Network, Member FINRA/SIPC, a Registered Investment Adviser, provides a suite of business solutions that empowers more than 2,000 independent financial advisors nationwide. J.D. Power ranks Commonwealth “#1 in Independent Advisor Satisfaction Among Financial Investment Firms, Eight Times in a Row.” Privately held since 1979, the firm has headquarters in Waltham, Massachusetts, and San Diego, California.

 

Turning our advisors into raving fans starts by doing the same for our employees. We foster an environment of excellence, growth, rewards, and fun in equal measure, so our employees genuinely enjoy coming to work. Our refreshing workplace culture has earned us 43 Best Place to Work awards—and counting. 

  

The Fine Print  

We care about your online safety as a prospective employee and encourage you to exercise caution when responding to job postings online. Commonwealth will never ask potential hiring candidates to pay or transfer funds as a precondition of interviews or employment, nor will we authorize recruiters or agents to do so on our behalf.

  

Commonwealth is an equal opportunity employer, making intentional efforts to source candidates from all backgrounds.   

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed