Address
Form of workThe Opportunity
Huron is redefining what a global consulting organization can be. Advancing new ideas every day to build even stronger clients, individuals and communities. We're helping our clients find new ways to drive growth, enhance business performance and sustain leadership in the markets they serve. And, we're developing strategies and implementing solutions that enable the transformative change they need to own their future.
As a member of the Huron corporate team, you'll help to evolve our business model to stay ahead of market forces, industry trends and client needs. Our accounting, finance, human resources, IT, legal, marketing and facilities management professionals work collaboratively to support Huron's collective strategies and enable real transformation to produce sustainable business results.
Join our team and create your future
Position Summary
Huron Consulting Group's Corporate Security team is tasked with managing and directing the global enterprise information security program. The team is responsible for the oversight and coordination of security efforts across the company, including IT, GRC, HR, Legal, Finance, Procurement, and business units (BU) such as Consulting-Healthcare, Consulting-Education, and Digital. The security team at Huron is growing under new leadership and one of the roles being sought is an experienced Threat Hunter.Qualifications
The Threat Hunter will have a passion for researching, finding, and identifying the latest cyber threats to Huron. Using various methods and sources, both internal and external to Huron, the cyber security engineer will work to develop proactive, anticipatory, and reactionary actions against aggressors. The goal of the Threat Hunter will be to help protect the Huron environment by reducing the probability of, and to minimize the effects of, damage caused by malware and malicious activities. Prevention of cyberattacks is ideal, detection is a must, and detection without response is of little value. Additionally, the Threat Hunter will help secure Huron by hunting for threats to the computing environment and will discover and interpret security intelligence which can be applied by system owners and stakeholders to minimize or mitigate risk.
Key Responsibilities
Qualifications:
Preferred skills
The estimated base salary for this job is $95,000 - $130,000. The range represents a good faith estimate of the range that Huron reasonably expects to pay for this job at the time of the job posting. The actual salary paid to an individual will vary based on multiple factors, including but not limited to specific skills or certifications, years of experience, market changes, and required travel. This job is also eligible to participate in Huron's annual incentive compensation program, which reflects Huron's pay for performance philosophy. Inclusive of annual incentive compensation opportunity, the total estimated compensation range for this job is $106,400 - $153,400. The job is also eligible to participate in Huron's benefit plans which include medical, dental and vision coverage and other wellness programs. The salary range information provided is in accordance with applicable state and local laws regarding salary transparency that are currently in effect and may be implemented in the future.
#LI-CB1
Posting Category
CorporateOpportunity Type
RegularCountry
United States of America
Huron is redefining what a global consulting organization can be. Advancing new ideas every day to build even stronger clients, individuals and communities. We're helping our clients find new ways to drive growth, enhance business performance and sustain leadership in the markets they serve. And, we're developing strategies and implementing solutions that enable the transformative change they need to own their future.
As a member of the Huron corporate team, you'll help to evolve our business model to stay ahead of market forces, industry trends and client needs. Our accounting, finance, human resources, IT, legal, marketing and facilities management professionals work collaboratively to support Huron's collective strategies and enable real transformation to produce sustainable business results.
Join our team and create your future
Position Summary
Huron Consulting Group's Corporate Security team is tasked with managing and directing the global enterprise information security program. The team is responsible for the oversight and coordination of security efforts across the company, including IT, GRC, HR, Legal, Finance, Procurement, and business units (BU) such as Consulting-Healthcare, Consulting-Education, and Digital. The security team at Huron is growing under new leadership and one of the roles being sought is an experienced Threat Hunter.Qualifications
The Threat Hunter will have a passion for researching, finding, and identifying the latest cyber threats to Huron. Using various methods and sources, both internal and external to Huron, the cyber security engineer will work to develop proactive, anticipatory, and reactionary actions against aggressors. The goal of the Threat Hunter will be to help protect the Huron environment by reducing the probability of, and to minimize the effects of, damage caused by malware and malicious activities. Prevention of cyberattacks is ideal, detection is a must, and detection without response is of little value. Additionally, the Threat Hunter will help secure Huron by hunting for threats to the computing environment and will discover and interpret security intelligence which can be applied by system owners and stakeholders to minimize or mitigate risk.
Key Responsibilities
- Develop, test, and employ threat hunting methodologies
- Develop actionable information, (e.g., technical indicators, reports, lists, rule sets, signatures, and alerts) that accurately identify malicious behavior while maintaining a low false positive rate
- Perform analysis on alerts and new indicators of compromise to detect anomalies and prior compromise
- Collaborate with teams such as security, GRC, SOC, operations, Platform, and other teams, to ensure threat hunting effectiveness, and to support incident response efforts by helping to prioritize, remediate, mitigate, and reduce time-to-detection
- Develop and implement new initiatives to simplify, standardize, and optimize intelligence, to reduce response times, and to improve security posture
- Monitor external threat intelligence to track and report on attack campaigns
- Analyze and gain insight into emerging cyber threats, threat actors' strategies, techniques, objectives, and incident response best practices
- Collaborate with teams to design realistic security scenarios and simulations that mimic potential threats, incorporating the latest tactics and threat actor behaviors, to challenge and improve our security defenses
- Compile detailed reports and provide relevant metrics for varying audiences/stakeholders
Qualifications:
- Experience analyzing the risk and exploitability associated with cybersecurity vulnerabilities
- Experience researching cybersecurity industry trends
- Experience with information security controls, infrastructure, and implementation techniques, as well as familiarity with adversarial techniques, red teaming, and application and infrastructure assessment
- Experience with Threat Hunting techniques on both endpoints and networks
- Strong knowledge of Windows and Linux internals, as well as networking fundamentals
- Strong understanding of common attack vectors and offensive tools and tactics
- Strong knowledge of web applications and APIs
- Understanding of enterprise architectures and large IT environment operations
- Understanding of common malware types, behaviors, and common infection vectors
- Ability to identify attacker Tactics, Techniques, and Procedures (TTPs)
- Experience with IoC lifecycle (development, organization, sharing, effective usage)
- Ability to develop automation scripts and makeshift tools (Python, PowerShell, Bash, etc.)
- Strong documentation and reporting skills, including documenting findings, methodology, and executive summaries
- Ability to generate accurate, contextual, and thorough deliverables surrounding threat hunting activities
Preferred skills
- 3-5 years of experience in Information Security Technology / Cyber Threat Intelligence / Cyber Security Engineering / or related discipline
- Excellent written and verbal communication skills
- Self-starter focused on learning and continuous improvement
- Experience with frameworks such as MITRE ATT&CK, STIX, TAXII, and SCAP
- 1+ years of experience with threat hunting and threat intelligence
- Experience with industry standard defensive tools, SIEM, EDR, etc.
- Comfortable working with a team in an agile environment
- Adept at multitasking and time management; ability to remain organized, calm under pressure, meet initiative deadlines, quick response to real-time threats and incidents
- Experience with cloud environments, reverse engineering, sandboxing technologies
- Degree in relevant computer science/security/IT field and/or security certifications, e.g., GREM, GCFE, GCFA, CEH, GCIH, etc.
The estimated base salary for this job is $95,000 - $130,000. The range represents a good faith estimate of the range that Huron reasonably expects to pay for this job at the time of the job posting. The actual salary paid to an individual will vary based on multiple factors, including but not limited to specific skills or certifications, years of experience, market changes, and required travel. This job is also eligible to participate in Huron's annual incentive compensation program, which reflects Huron's pay for performance philosophy. Inclusive of annual incentive compensation opportunity, the total estimated compensation range for this job is $106,400 - $153,400. The job is also eligible to participate in Huron's benefit plans which include medical, dental and vision coverage and other wellness programs. The salary range information provided is in accordance with applicable state and local laws regarding salary transparency that are currently in effect and may be implemented in the future.
#LI-CB1
Posting Category
CorporateOpportunity Type
RegularCountry
United States of America
