ITPP Kharadi, Block 2, Wing 1, 7th Floor, Kharadi, Pune
- Pune
- Information Technology
Threat Hunting Analyst
Job description
Metro Global Solution Center (MGSC) is internal solution partner for METRO, a €29.8 Billion international wholesaler with operations in 31 countries through 661 stores & a team of 93,000 people globally. Metro operates in a further 10 countries with its Food Service Distribution (FSD) business and it is thus active in a total of 34 countries.
MGSC, location wise is present in Pune (India), Düsseldorf (Germany) and Szczecin (Poland). We provide IT & Business operations support to 31 countries, speak 24+ languages and process over 18,000 transactions a day. We are setting tomorrow’s standards for customer focus, digital solutions, and sustainable business models. For over 10 years, we have been providing services and solutions from our two locations in Pune and Szczecin. This has allowed us to gain extensive experience in how we can best serve our internal customers with high quality and passion. We believe that we can add value, drive efficiency, and satisfy our customers.
Website: https://www.metro-gsc.in
Company Size: 600-650
Headquarters: Pune, Maharashtra, India
Type: Privately Held
Inception: 2011
Responsibilities:
- Perform intelligence led proactive threat hunts across the organization, utilising a range of tooling available, and focusing hunts on relevant behavioural tactics, techniques, and procedures (TTPs) identified as potential threats to the organization.
- Contribute to detection engineering initiatives by identifying opportunities for, and implementation of new detections as an output of threat hunts completed.
- Support other functions within security operations by responding to hunt requests and by applying expertise in advanced actors and TTPs for ongoing incidents, working closely with our incident responders.
- Research new attack behaviours and TTPs used by threat actors, leading to new hunting and detection opportunities.
- Assist in the development and maturity of the threat hunting process and team through development of cutting edge hunting techniques and introduction of automation into the threat hunting process.
- Develop threat hunting hypothesis in collaboration with the threat intelligence team, helping to track relevant threat actors, campaigns and emerging threats and the TTPs they use.
- Help in defining the metrics, measurements and analytical tools to quantify surface area of risk, business impact and implement mechanisms to track progress on efforts to reduce those risks.
- Represent threat hunting to the wider information security team, and to the wider business, including senior stakeholders, through reporting, presentations and knowledge sharing sessions.
- Adapts quickly to changing priorities, seeks new ideas, and re-align with team’s priority/roadmap to maximize business productivity.
Technical & Soft Skills:
- Good understanding of cyber threats, attack vectors, and common exploitation techniques.
- Proficiency in using threat intelligence platforms, open-source tools, and SOC technologies such as Google Chronicle SIEM, CrowdStrike EDR/EPP, Vectra NDR, Qualys VM, Recorded Future TI, etc.
- Proficiency in multiple query languages such as YARA, CrowdStrike QL or SPS with an ability to manipulate and analyse large data sets.
- Expertise in formulating threat hunting hypotheses and working with available data sets to determine conclusions.
- Solid understanding of current TTPs used by threat actors and an ability to replicate behaviours in a lab environment to generate telemetry.
- Direct experience working with the Mitre ATT&CK Framework or similar, with an ability to utilise the framework to identify detection gaps for threat hunting.
- Strong competence being able to quickly respond to emerging threats, showcasing an ability to develop and perform hunts, while working under strict deadlines.
- Strong understanding of Windows, Linux, and network protocols.
- Strong knowledge of industry frameworks and standards, such as STIX/TAXII, MITRE ATT&CK, and threat intelligence sharing platforms.
- Excellent written and verbal communication skills, including the ability to present complex technical information to both technical and non-technical audiences.
- Strong analytical and critical thinking skills, with the ability to analyze complex data sets and identify actionable insights.
- Proven experience in collaborating with cross-functional teams and providing guidance on threat intelligence-related matters.
Qualifications
- Bachelor’s degree in computer science, Information Technology, Cybersecurity, or in a related field. A master’s degree or Relevant Cyber Security certifications (e.g. CTIA, CREST PTIA, MITRE’s MAD, CySA+) are a plus.
- 4-7 years of total experience in SOC in a large multi-national organization or in a known MSSP. In addition to SOC Engineering experience, candidate should possess at least 2+ year of experience on Threat Hunting capabilities.
Related jobs
Salary
Location
8th Floor, AP 81, Sr. No. 83, North Main Road, Near Hard Rock Café, Mundhwa, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
MDG Technical Senior Consultant - The domain ‘Supplier Management’ owns various solutions in Supplier Management, including supplier master data, the supplier web portal, contract & condition manageme
Reference
c37e25a9-c1cf-4b75-aaad-1b3afff3e866
Expiry Date
01/01/0001
Salary
Location
8th Floor, AP 81, Sr. No. 83, North Main Road, Near Hard Rock Café, Mundhwa, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
The primary responsibility is to focus on managing and optimizing EDR solutions to enhance endpoint security. This includes designing, implementing, and maintaining EDR systems and technology, investi
Reference
f4145289-1ddd-4082-9ce5-f01de181c8c7
Expiry Date
01/01/0001
Salary
Location
7TH Floor, Wing 1, Block 2 International Tech Park Pune Grant Road, Kharadi , Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
We are looking for…- An experienced architect who thrives in modern, cloud-native environments and can guide teams through complex transformations. - A hands-on technical leader with strong problem-s
Reference
7027e330-a8fb-47fc-86ad-be573030823c
Expiry Date
01/01/0001
Salary
Location
7TH Floor, Wing 1, Block 2 International Tech Park Pune Grant Road, Kharadi, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
Who we are At METRO, we drive technology for one of the world’s leading international food wholesalers — METRO. From e-commerce to checkout and delivery software, we build products that make each day
Reference
c5460390-0ddb-441d-8ef9-8d2262f7a08c
Expiry Date
01/01/0001
Salary
Location
ITPP Kharadi, Block 2, Wing 1, 7th Floor, Kharadi, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
Responsibilities:EDR Solution Management: Develop, configure, and maintain EDR solutions, tailoring them to specific Business needs and security requirements.Coverage: Develop baseline asset inventori
Reference
cdbfb8c6-cb59-436d-9f97-be792a3b53c3
Expiry Date
01/01/0001
Salary
Location
8th Floor, AP 81, Sr. No. 83, North Main Road, Mundhwa, Pune, Maharashtra, India, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
Profile Summary:As a Level 3 Cyber Defense Operations Center (CDOC) Specialist, you will lead advanced security operations with a focus on SIEM and SOAR technologies, driving detection engineering, au
Reference
5c30d9a2-264d-4914-a380-075c795f65e1
Expiry Date
01/01/0001
Salary
Location
8th Floor, AP 81, Sr. No. 83, North Main Road, Mundhwa, Pune, Maharashtra, India, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
Profile Summary:●As a Level 3 SOAR Specialist, as part of the Cyber Defense Operations Center (CDOC) you will lead advanced security operations with a focus on SIEM and SOAR technologies, driving dete
Reference
1aeb2f54-7095-413f-ba13-ee44516bfedf
Expiry Date
01/01/0001
Salary
Location
ITPP Kharadi, Block 2, Wing 1, 7th Floor, Kharadi, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
Responsibilities:Deep understanding of VAPT and its management platforms.Manage and maintain vulnerability scanning tools to identify security vulnerabilities in enterprise systems, networks, and appl
Reference
3efbcf5c-526d-43bc-a410-06865ec31220
Expiry Date
01/01/0001
Salary
Location
ITPP Kharadi, Block 2, Wing 1, 7th Floor, Kharadi, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
Responsibilities:Conduct in-depth analysis and research to attribute cyber threats and attacks, including identifying threat actors, their motivations, tactics, techniques, and procedures (TTPs), and
Reference
13fe3c6f-a46b-4c9f-91ff-985582e7c78a
Expiry Date
01/01/0001
Salary
Location
ITPP Kharadi, Block 2, Wing 1, 7th Floor, Kharadi, Pune
Type of Employment
Professionals
Location
Pune
Work Model
Hybrid
Job Type
Full Time
Department
Information Technology
Description
Responsibilities:EDR Solution Management: Develop, configure, and maintain EDR solutions, tailoring them to specific Business needs and security requirements.Coverage: Develop baseline asset inventori
Reference
34d9492d-24ca-49c1-a89b-ea47a8573dc9
Expiry Date
01/01/0001
Articles you might be interested in
Who we look for
We offer the perfect working environment for anyone who feels like trying things out - personally and professionally. Retail is one of the most exciting and varied industries and we are looking for people who want to shape the future of retail together with us. To this end, we give our employees the necessary freedom to measure their skills against exciting challenges and to develop with us. Because as a leading multichannel wholesaler, everything revolves around our customers - and around the people of METRO: around you and your personal growth. Let's accelerate - together!
CultureJobs you have shown an interest in