Job Role : Principal SecurityConsultant
As a PrincipalSecurity Consultant, you live and breathe blue team operations.Your technical expertise in endpoint and network threat detectionand defence is second only to your integrity and passion for cybersecurity and technology in general.
You work well in a team ofhighly motivated and skilled blue teamers. You enjoy taking on newchallenges in a fast paced and dynamic working environment.
You area team player who is always willing to help out where required,with a humble and positive attitude.
In this role, youwill :
Perform threathunting in support of incident response, as well as proactiveenvironment assessments
Host based assessmentusing EDR tools and network forensic assessments utilising fullpacket data
Provide subject matter expertisein the threat detection and cyber defence domains
Contribute to process documentation and continuousimprovement
Collaboration with customers toenhance existing security controls
Flexibleschedule that is open to changing situations andopportunities
Ability to produce highlydetailed reports and technical briefs
Continuous improvement activities within a threatdetection lab environment
Explain technicalfindings in a manner that can be easily understood by technical andnon-technical staff
You must be a team player,with a humble and approachable nature who is willing to go theextra mile
Provide guidance and mentoringwhere required to team members
To bring your dream to life,you’ll need :
Live and breathe blue team operations!
Expert understanding of blue team operations and threathunting
Expert understanding of networkprotocols, TCP / IP etc.
Expert understanding ofMicrosoft Windows
Strong understanding ofLinux and OSX
Strong understanding of enterprisesystems, technologies, and infrastructure
Proven experience performing duties utilising PICERL / NIST IR standards
Strong knowledge of targetedthreat actors and experience working on targetedincidents
Strong understanding of currentthreats, vulnerabilities, and attack trends
Strong understanding of ATT&CKframework
Excellent organisational skills,ability to prioritise, and ability to work independently
Strong attention to detail and reportingaccuracy
Strong English language skills, bothspoken and written
GIAC Certified : GNFA, GCIH,GCIA, GCFE, GCFA, GDAT, etc
Scripting skills(Shell, Python, PowerShell) are a plus
Bachelor's degree in Computer Science orEngineering desirable, but not mandatory
Minimum 5 years of IT Security experience, specificallyin one of the following :
Security OperationsCenter (SOC)
Computer Emergency / IncidentResponse Team (CERT / CIRT)