NCC Group
Jobid=A.0.08
Your Role as a Threat Hunter
Location: Delft
In short:
As a member of the MXDR SOCs dedicated Threat Hunting Team, your role is to carry out regular targeted and scalable threat hunts across our MXDR SOC clients. This role focusses around supporting the development of a hypothesis led, native threat hunting capability to provide our clients with bleeding edge detections in response to live, real-world threats. You will be part of a small team of threat hunters who will carry out the ad-hoc and scheduled monthly threat hunts and report on them accordingly.
Fox-IT
We are Fox-IT, also known as Fox. We stand for ‘A More Secure Society.’ Together, we are committed to making society safer through our technical and innovative solutions. From ethical hackers and incident responders to developers, security consultants, and more: we do this for organizations where cybersecurity is of great importance.
We are critical thinkers, naturally security-minded, and love continuous development. We are part of the NCC Group, and together with 2,000 colleagues around the world, we work towards our mission of creating a safer world.
We have the mission to make our society safer. Our colleagues are the ones who make this possible; a global team of talented individuals working together towards a safer future.
We want to create an environment where everyone can reach their full potential. We work together, are immensely creative, embrace differences, and want you to be part of our mission.
This is You
Summary:
- Carry out hypothesis-based threat hunting on a regular basis under the guidance of the SOC Threat Hunt Manager, across our MXDR SOC client base. This includes customers under our XDR for Sentinel & XDR for Splunk Managed Services.
- Carry out monthly TI driven threat hunts under the guidance of the SOC Threat Hunt Manager across our MXDR SOC client base. This includes customers under our XDR for Sentinel & XDR for Splunk Managed Services.
- Respond to NCC Group TI alerts with ad-hoc threat hunts across our MXDR SOC client base under the guidance of the SOC Threat Hunt Manager. This includes customers under our XDR for Sentinel & XDR for Splunk Managed Services.
What we are looking for in you:
Minimum Requirements
- Minimum 3 years of experience within an operational cyber security or TI role.
- Previous detection or data engineering experience, demonstrable at interview.
- Microsoft SC200 Certified
Desirable Requirements
- Splunk Certified Power User/Advanced Power User
- CompTIA Certifications (Security+/ Network+/ Linux+)
- Crest, GIAC or CISSP Certification
- Degree in related field.
- Other relevant certifications.
Our Offer
You will work in a place at the top of cybersecurity where your ideas are valued. You may not always be able to share all the details about your work, but you can tell that you are contributing to a safer society. Additionally, we offer you:
- A good salary that matches the things you have already done and will do;
- Flexible working hours and flexibility in working from home or at the office, allowing you to optimally combine your private life with your work;
- A favorable pension scheme, 26 vacation days (+4 mandatory days off), and 8% holiday pay with a full-time contract;
- Plenty of development opportunities: you can gain and share knowledge through training, TechTalks, events, and our own Fox Academy;
- A laptop and business phone. If you use your own phone, you will receive a reimbursement of up to €25 per month;
- A remote work allowance (for hybrid working);
- A performance bonus and profit sharing because we value your effort;
- When we work in the office, we gather every day for a delicious lunch.
Become a Foxer!
Do you recognize yourself in the above description and see the match? Let us know how you envision this! You can apply via the button below. You will then be directed to our ATS Workday, allowing us to process your application quickly.
A comprehensive screening is part of the onboarding process at Fox-IT.
Help from recruitment agencies, however well-intentioned, is (really) not needed.
About Your Application
We review every application and will contact you if your knowledge and work experience match what we are looking for. If you do not hear from us within 10 days, please do not be disappointed; we will keep your CV in our database for potential future vacancies and encourage you to keep an eye on our vacancies on our website. Feel free to apply for another position that appeals to you!
If you do not want us to keep your details, please send an email to global.ta@nccgroup.com. All personal data is stored in accordance with the NCC Group’s privacy policy. We are committed to diversity and flexibility in the workplace. If you need any adjustments during the application process, please let us know.
If you need further modifications or additional assistance, feel free to ask!
