Job Title:  Consultant | Threat Analysis/Assessment | Bengaluru Eco space | Cyber Defense & Resilience

Key Responsibilities:

Conduct proactive threat hunting using logs, network traffic, and endpoint data.

Develop and test hypotheses based on emerging threat intelligence.

Analyze indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) aligned with MITRE ATT&CK framework.

Correlate data across multiple sources (SIEM, EDR, firewall, network, and cloud logs) to identify suspicious behaviour.

Create detection logic and custom rules to enhance threat visibility in SIEM tools (e.g., QRadar, Splunk, Sentinel).

Work with SOC and IR teams to respond to and contain threats identified through hunting.

Document hunt findings, develop playbooks, and suggest detection improvements.

Stay current on cyber threat trends, APT campaigns, and new attack methodologies.

Required Skills & Experience:

2–5 years of experience in threat hunting, SOC analysis, incident response, or threat intelligence.

Strong knowledge of network protocols, malware behavior, and Windows/Linux internals.

Hands-on experience with SIEM tools (QRadar, Splunk, or Sentinel) and EDR platforms (CrowdStrike, Carbon Black, Defender).

Familiarity with MITRE ATT&CK, Cyber Kill Chain, and IOC analysis.

Strong analytical skills with ability to interpret large data sets and identify anomalies.

Scripting experience (Python, PowerShell, or Bash) for automation or data enrichment preferred.

Exposure to cloud security (AWS, Azure, GCP) is a plus

Desired qualifications

Education B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields