1.844.822.0541

info@nexusgroup.ca

Nexus Systems Group

by

Location Address: Scarborough – remote – option to come in if preferred
Contract Duration: 1 year
Number of Positions: 1
Schedule Hours: 9am-5pm Monday-Friday (Possible OT)
Reason: backfill for mat leave

Story Behind the Need
Business group: Cybercrime and Security Investigations

Reporting to the Senior Manager of Cyber Threat Hunting, the Senior Cyber Threat Hunter role within the Cyber Threat Hunting team is responsible for identifying and assessing cyber-security and insider (people) threats posing potential risk and harm.

Candidate Value Proposition:
Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Typical Day in Role:
The Senior Cyber Threat Hunter works as part of a pro-active investigation team that iteratively analyzes information across various data sources, facilitates establishing the likelihood of business impact, and helps to identify control enhancements to mitigate/isolate risk to business operations. They iteratively analyze information across various data sources, establishing the likelihood of business impact, and helps to identify control enhancements to mitigate/isolate risk to business operations.

-Lead threat hunting operations using analytics-driven, awareness-driven, and intelligence-driven analysis methodologies to detect and mitigate threats across the enterprise.
-Ensure that proper chain of custody is maintained and that all evidence recovery and collection methods are conducted, managed, and archived in a manner consistent to maintain preservation and protection of data and evidence in its original form.
-Recommend security solutions and controls to improve deficiencies identified during an investigation.
-Develop and implement processes and technologies to reduce costs and minimize business impacts during threat hunting engagements.
-Support, develop and maintain mechanisms for occurrence reporting and management threat hunting engagements.
-Adhere to industry standard principles, methodologies, and techniques when gathering, processing, handling and storing digital evidence
-Ensure that proper chain of custody is maintained and that all evidence management techniques and methods are executed in a forensically sound manner consistent with proven industry standards

Candidate Requirements/Must Have Skills:
1) 5+ years working experience in information/cyber security
2) 3+ years of experience tracking cyber threats (Know and apply Cyber Kill Chain, MITRE AT&CK framework)
3) 3+ years of experience performing root cause analysis in cyber investigations
4) 3+ years of experience with SIEM (Security Incident Event Management) solutions
5) 3+ years of experience with Malware Sandboxes

Nice-To-Have Skills:
1) Professional certifications and membership of associations in the field of information/cyber security such as: Global Information Assurance Certification (GIAC), Systems Security Certified Practitioner (SSCP).

2) experience with digital forensics
3) Familiarity with EDR solutions
4) Statistical Analysis for Anomaly detection
5) Software development experience

Soft Skills Required:
-Attention to detail and accuracy
-Strong verbal/written communication skills (ability to write reports)
-ability to work well within teams
-ability to work independently
-strong presentation skills

Education:
Bachelor's degree in an approved field from an accredited university

Best vs. Average Candidate
The ideal candidate would have strong cyber investigation lead experience and would have software development experience.

Candidate Review & Selection
1 round
1st – HM + Cyber Specialist + Senior Threat Hunter – 1 hr – MS Teams Video (behavioural/situational open-ended questions)