Senior Threat Hunter Cyber Threat Hunting - Toronto, Canada - Scotiabank

    Scotiabank
    Scotiabank Toronto, Canada

    3 weeks ago

    Scotiabank background
    Description

    Reporting to the Senior Manager of Cyber Threat Hunting, the Senior Cyber Threat Hunter role within the Cyber Threat Hunting team is responsible for identifying and assessing cyber-security and insider (people) threats posing potential risk and harm throughout Scotiabank globally.

    The Senior Cyber Threat Hunter works as part of a pro-active investigation team that iteratively analyzes information across various data sources, facilitates establishing the likelihood of business impact, and helps to identify control enhancements to mitigate/isolate risk to business operations. They iteratively analyze information across various data sources, establishing the likelihood of business impact, and helps to identify control enhancements to mitigate/isolate risk to business operations.

    Accountabilities

  • Lead threat hunting operations using analytics-driven, awareness-driven, and intelligence-driven analysis methodologies to detect and mitigate threats across the enterprise.
  • Ensure that proper chain of custody is maintained and that all evidence recovery and collection methods are conducted, managed, and archived in a manner consistent to maintain preservation and protection of data and evidence in its original form.
  • Recommend security solutions and controls to improve deficiencies identified during an investigation.
  • Develop and implement processes and technologies to reduce costs and minimize business impacts during threat hunting engagements.
  • Support, develop and maintain mechanisms for occurrence reporting and management threat hunting engagements.
  • Adhere to industry standard principles, methodologies, and techniques when gathering, processing, handling and storing digital evidence
  • Ensure that proper chain of custody is maintained and that all evidence management techniques and methods are executed in a forensically sound manner consistent with proven industry standards

    • Education :

  • +4 years working experience in information/cyber security or related field; or a Bachelor's degree in an approved field from an accredited university and a minimum of +2 years of documented and relevant experience.
  • Professional certifications and membership of associations in the field of information/cyber security preferred, but not required, such as: Global Information Assurance Certification (GIAC), Systems Security Certified Practitioner (SSCP).

    • #Cyberatscotia #LI-Hybrid