Job Title:  T&T I Cyber-D&R I Assistant Manager | Cyber Threat Hunting | Bengaluru

Your work profile

• Conduct proactive threat hunting using logs, network traffic, and endpoint data.
• Develop and test hypotheses based on emerging threat intelligence.
• Analyze indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) aligned with MITRE ATT&CK framework.
• Correlate data across multiple sources (SIEM, EDR, firewall, network, and cloud logs) to identify suspicious behaviour.
• Create detection logic and custom rules to enhance threat visibility in SIEM tools (e.g., QRadar, Splunk, Sentinel).
• Work with SOC and IR teams to respond to and contain threats identified through hunting.
• Document hunt findings, develop playbooks, and suggest detection improvements.
• Stay current on cyber threat trends, APT campaigns, and new attack methodologies.

Key Skills required

• 3–6 years of experience in threat hunting, SOC analysis, incident response, or threat intelligence.
• Strong knowledge of network protocols, malware behavior, and Windows/Linux internals.
• Hands-on experience with SIEM tools (QRadar, Splunk, or Sentinel) and EDR platforms (CrowdStrike, Carbon Black, Defender).
• Familiarity with MITRE ATT&CK, Cyber Kill Chain, and IOC analysis.
• Strong analytical skills with ability to interpret large data sets and identify anomalies.
• Scripting experience (Python, PowerShell, or Bash) for automation or data enrichment preferred.
• Exposure to cloud security (AWS, Azure, GCP) is a plus
• Education: Bachelor’s degree in information security, Computer Science, or a related field. A master’s in business management is preferred.