CT- Lead Cyber Threat Hunter
Irving, Texas, Alpharetta, Géorgie, Austin, Texas See Job ResponsibilitiesProfil recherché
Qu’est-ce qui définit CT- Lead Cyber Threat Hunter couronné de succès? Voici les qualités principales de cette personne :
- Conceptualisation
- Proactivité
- Résolution de problèmes
- Stratégie
- Fine pointe de la technologie
- Pensée visuelle
Employee Spotlight
The opportunity to work at McKesson means you get to join in our company purpose of Advancing Health Outcomes for All. Hear from one of our team members to learn more about their role and how they get to make an impact every day.
Culture
Accomplissement
Mettre à profit vos aptitudes dans la résolution de problèmes pour maximiser le temps disponible de nos produits et assurer une expérience agréable à notre clientèle, tout en maintenant un équilibre travail-vie personnelle sain.
Innovation
à l’aide de nos données en évolution et de nos outils technologiques, surveiller et analyser l’information et les tendances pour définir les prochaines étapes de notre mission d’améliorer les soins de santé.
Création
Parvenir à des solutions qui contribuent à éliminer les obstacles de coût pour améliorer la distribution et maintenir l’efficacité des médicaments. Vous jouerez un rôle clé dans le façonnement d’une industrie mondiale.
Avantages sociaux
-
Une couverture sur laquelle vous pouvez compter :
- Soins médicaux, dentaires et de la vue
- Compte de frais médicaux
- Compte de frais variables
-
Des avantages sociaux qui surpassent votre salaire de base :
- 401(k) (États-Unis)
- Régime de retraite (Canada)
- Régime d’actionnariat privilégié pour le personnel
-
Soutien au bien-être global :
- Programmes de santé mentale
- Horaires de travail flexibles
- Congés payés
- Programme de mieux-être
- Remboursement des droits de scolarité
- Occasions de bénévolat
- Environnement de travail flexible
-
Un chef de file mondial de l’inclusion :
L’engagement de McKesson envers la diversité et l’inclusion commence au sommet. Nous figurons d’ailleurs à la liste des Meilleurs employeurs en matière de diversité compilée par Forbes.
Responsibility
McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve – we care.
What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow’s health today, we want to hear from you.
Job Summary
McKesson’s Global Cyber Threat Hunting Lead will be a member or our Cyber Investigations & Response Team executing threat hunting activities across the Enterprise. You will be responsible forleading threat actor-based investigations, implementing technical threat hunt methodologies, creating new detection methodologies, and providing expert support to incident response and monitoring functions. Your mission is to timely detect, disrupt, and eradicate threat actors from enterprise networks based on relevant and timely threat intelligence. To execute this mission, youwill use data analysis, threat intelligence, and cutting-edge security technologies. You will support the security operations by applying analytic and technical skills to investigate intrusions, identify malicious activity and potential insider threats, and collaborate with the Incident Response Team on responding to detected incidents.
Responsibilities
Lead the research, analysis, and response for alerts; including log retrieval and documentation.
Conduct analysis of network traffic and host activity across a wide array of technologies and platforms.
Assist in incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts.
Compile detailed investigation and analysis reports.
Work with the Cyber Threat Intelligence (CTI) team to track threat actors and associated tactics, techniques, and procedures (TTPs) and develop countermeasures in response to those threat actors.
Analyze malicious campaigns and evaluate effectiveness of security technologies.
Coordinate threat hunting activities across the network leveraging intelligence from multiple internal and external sources, as well as cutting- edge security technologies.
Perform Root Cause Analysis of security events and incidents for further enhancement of processes and detection/prevention strategies.
Develop dashboards and reports to identify potential threats, suspicious/anomalous activity, malware, etc.
Requirements
10+ years of relevant cyber security experience in Threat Hunting, IT Security, Incident Response or network security with strong knowledge working in a Security Operations Center, Incident Response team, or Threat Hunting team.
Experience with risk management, vulnerability management, threat analysis, security auditing, security monitoring, incident response and other information security practices preferred
Strong analytical and investigation skills & active threat hunting and adversary tracking.
Excellent written and oral communication skills with the ability to effectively communicate with information technology professionals as well as senior management and auditors, assessors, and consultants
High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity
Working knowledge of root causes of malware infections and proactive mitigation.
Working knowledge of lateral movement, footholds, and data exfiltration techniques
Ability to mentor and potentially independently lead a team of global Cyber Threat Hunters.
Preferred Technical and Professional Expertise
One or more of the following technical security certifications or equivalent: GDAT (GIAC Defending Advanced Threats),Certified Cyber Threat Hunting Professional (CCTHP), Certified Threat Intelligence Analyst (CTIA),andGIAC Cyber Threat Intelligence (GCTI).
Master’s degree in a technical field such as Computer Science, Information Security, Information Technology, Computer Engineering, or Information Systems. or equivalent degree is preferred.
Knowledge of the underlying logic that security alerts are built upon and apply them when analyzing raw logs and creating new dashboards and alerts.
Recognize complex problems, analyze situations and provide suggested/implemented resolution(s)
Experience and knowledge of packet flow, TCP/UDP traffic, firewall technologies, IDS technologies, proxy technologies, and antivirus, spam and spyware solutions.
Provide leadership and guidance to the team and act as a resource to the team members.
Experience with one or more scripting languages (e.g., Python, JavaScript, Perl)
Perform memory analysis and malware analysis
Experience with computer exploitation methodologies
We are proud to offer a competitive compensation package at McKesson as part of our Total Rewards. This is determined by several factors, including performance, experience and skills, equity, regular job market evaluations, and geographical markets. The pay range shown below is aligned with McKesson's pay philosophy, and pay will always be compliant with any applicable regulations. In addition to base pay, other compensation, such as an annual bonus or long-term incentive opportunities may be offered. For more information regarding benefits at McKesson, please click here.
Our Base Pay Range for this position
$139,000 - $231,600McKesson is an Equal Opportunity Employer
McKesson provides equal employment opportunities to applicants and employees and is committed to a diverse and inclusive environment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age or genetic information. For additional information on McKesson’s full Equal Employment Opportunity policies, visit our Equal Employment Opportunity page.
Join us at McKesson!