Cyber Security Threat Hunter
Accenture Cyber Fusion Center in Prague is a unique multidisciplined team of around 200 people passionate about Cyber Security. As part of Accenture Security we support clients globally to prepare for and defend against the rapidly changing capabilities of cyber attackers. We are looking for security professionals to join our international team at our custom-built location.
Role summary
As part of the Accenture Cyber Fusion Center in Prague, you will be part of a specialised team to deliver managed Threat Hunting operations to our clients. Our managed Threat Hunting service enables our clients to uncover threats that would otherwise remain hidden. You will be looking for the evidence of active threats within our clients environments that bypass both preventative and detective controls using our delivery methodology and threat hunting tools and techniques.
Requirements
Proven Experience with Threat Hunting or Incident investigations (SOC/IR)
Experienced in using enterprise security solutions (such as SIEM and EDR) to conduct Investigations or Hunts
Strong knowledge of Windows internals and solid networking fundamentals
Strong understanding of common attack vectors and offensive tools and tactics
Understanding of enterprise architecture and large IT environment operations
Understanding of common malware types and behaviors and common infection vectors
Ability to identify attacker Tactics, Techniques, and procedures (TTPs)
Strong documentation and reporting skills
Solid presentation and communication skills
3+ years of information security operations experience
Nice to have
Experience with Cloud environments
Experience with OT and ICS environments
Knowledge of system internals for Unix-based systems
Experience with reverse engineering and sandboxing technologies
Degree in relevant computer science/IT field
Security certifications, for example, but not limited to, GREM, GCFE, GCFA, CEH, GCIH
SIEM (Splunk, QRadar, Sentinel, …) and EDR (CrowdStrike, FireEye HX, Endgame, Defender ATP) experience
Experience with IoC lifecycle (development, organization, sharing, effective usage)
Experience with statistical/quantitative analysis methods and tools
Ability to develop small automation scripts and makeshift tools (Python, PowerShell, Bash, …)
What we offer
You'll learn, grow and advance in an innovative culture that thrives on shared success, innovative and diverse ways of thinking and enables boundaryless opportunities that can drive your career in new and exciting ways
Opportunity to work on various interesting projects delivered to our global TOP 500 clients and with the newest trends in the cyber security area
Professional training and acquisition of crucial security certificates – from Offensive Security through CREST to SANS trainings and GIAC certifications
Ability to move between different teams with different specializations in either offensive or defensive security
Access to the cutting-edge cyber security products and solutions
Remote work
Prague
Equal Employment Opportunity Statement for Australia and New Zealand
At Accenture, we recognise that our people are multi-dimensional, and we create a work environment where all people feel like they can bring their authentic selves to work, every day.
Our unwavering commitment to inclusion and diversity unleashes innovation and creates a culture where everyone feels they have equal opportunity. Our range of progressive policies support flexibility in ‘where’, ‘when’ and ‘how’ our people work to ensure that Accenture is an organisation where you can strive for more, achieve great things and maintain the balance and wellbeing you need.
We encourage applications from all people, and we are committed to removing barriers to the recruitment process and employee lifecycle. All employment decisions shall be made without regard to age, disability status, ethnicity, gender, gender identity or expression, religion or sexual orientation and we do not tolerate discrimination. If you require any accommodations or adjustments for interviews and/or at work, please reach out to exectalent@accenture.com or contact us at +61 2 9005 5000 (Australia) or +64 44666056 (New Zealand).
To ensure our workplace is inclusive and diverse we are setting bold goals and taking comprehensive action. To achieve these goals, we collect information that allows us to track the effectiveness of our Inclusion and Diversity programs. Learn how Accenture protects your personal data and know your rights in relation to your personal data. Read more about our Privacy Statement.
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.