Cyber Threat Hunter

IBM Washington, DC

About the Job

**Job Description** IBM MSS Security Operations Center (SOC) is seeking an experienced EDR/threat hunt Analyst; The selected candidate will spend most of their time analyzing output from our EDR and associated tools, focusing on identifying potentially sophisticated APT and Insider Threat activities within client environments, and developing advanced reporting on that activity to include remediation steps. The successful candidate will be able to work independently, have a strong understanding of TTPs, have exceptional technical writing skills, and be able to work in stressful situations. Position must be based in one of the following strategic locations: Austin, TX Atlanta, GA Cambridge, MA **Required Technical and Professional Expertise** + 5 years in the cyber threat intelligence industry or equivalent knowledge and experience + 3 years experience in EDR (Endpoint technology and response) + Extensive knowledge of current and past malware, attack methodologies, and adversaries. + Experience in malware reversing both static and dynamic. + 3 years in incident response with extensive knowledge of the inner-workings of the windows\\linux\\osx operating systems. + 3 years in technical writing, developing technical documents, and incident response reporting. + Ability to quickly identify suspicious anomalies thru analysis of patterns in security logs. **Preferred Tech and Prof Experience** + Strong understanding of TTP's **EO Statement** IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.