Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Cyber Defense & Response Consultant (Threat Hunter) - Night Shift

  • Warszawa +2 more
  • Warszawa +2 more

The monthly salary range for this position is: 11000-15000 PLN gross/month
(with attractive bonus for night shifts).

WithSecure™ protects businesses all over the world from modern threats. We do this through a Co-security approach born from first-hand knowledge that no one can solve every cyber security problem alone. Every single day, our diverse, growing team fights against online extortion, threats to national infrastructure, the unlawful spread of sensitive information, and everything in-between. The best part about working for WithSecure is our people! We are a community of dedicated and passionate professionals that take workplace happiness seriously. If you’re looking for something that’s more than just a job – we’d love to hear from you.

WithSecure is world renowned for its Endpoint Protection solutions – providing preventative and proactive protection to tens of millions of computer and smart devices globally. Over the past few years, the company has successfully entered new markets and has increased its portfolio of solutions to include Cyber Consulting and Managed Detection and Response Solutions.

Our Managed Detection and Response (MDR) business provides a world leading managed service that detects and responds to cyber-attacks on behalf of our clients using a strong combination of people, process and technology. Much of the technology is designed and built in house by the WithSecure engineering team specifically to support the managed service or as leveraged products that WithSecure also provides to the wider market.

MDR team compromises several sub teams: the Threat Hunting team who uncover adversaries on our client’s networks, Incident Responders who contain attacks, the Research team who uncover new and emerging offensive and defensive techniques, and the Technical Operations team who maintain and develop the attack detection infrastructure to ensure it remains at the bleeding edge.

About the team

We are looking for an Associate Threat Hunter or a Threat Hunter to join our Detection and Response Team (DRT) in Poland. We actively monitor the networks of our customers, continuously improve our attack detection capability and develop their own skills to ensure that they stay on top of cybersecurity threats.

We work 24/7 in a shift model but in this advert we are looking for exclusively third shift (night hours) hunter.
The expectation is to cover majority of the night shifts for the rest of the team, while also developing our detection capabilities and your technical skill, with possibility to move to the regular shift work schedule in the future if you will prefer that.
If you would prefer regular 24/7 shift work, please review our second job advert.

Position is fully remote in Poland , with office space available in Poznan and Warsaw.

As a Threat Hunter here are a selection of the tasks you would carry out:

  • Proactively investigate host, network and log-based security events
  • Manage incidents from detection to resolution
  • Research new attack techniques to uncover innovative detection capabilities
  • Conduct malware analysis
  • Advanced host, network, and memory forensics
  • Assist in development of the Countercept service

Who we think will be a great fit…

If any of these points pique your interest, you will seamlessly integrate into the team and succeed:

  • Terms like “threat hunting ”, “malware analysis ”, “process injection ”, “covert C2 ”, “EDR ” and “APT ” excite you.
  • You love nothing more than reading about attacker techniques and are keen to thwart and respond to the ever-evolving threats they present to our clients.
  • You are both using and developing cutting edge tools to aid detection and response and are keen to keep up with the latest industry developments.
  • You will have real-world experience responding to attacks of all levels, from script kiddies to nation states, and relish sharing this experience and knowledge with the rest of the team and the industry at large.
  • You keep up with the latest industry developments, are an avid reader of things like /r/cybersecurity to get your security knowledge fix.

The Countercept platform is a dynamic and rapidly evolving product, which is heavily research led. The ideal candidate would also be able to contribute to enhancing the capability of the service, whether through direct development, research activities or media opportunities.

You should also have solid experience in both offensive and defensive security areas, either penetration testing, SOC, DFIR or ideally a mixture of them.


As a successful Threat Hunter you will demonstrate:

  • Strong knowledge of core IP networking and common protocols
  • Strong understanding of Windows and Linux internals
  • Ability to explain complex technical concepts in written and verbal form
  • Excellent communication skills in English
  • Hands on experience of network, memory and host forensics
  • Hands on experience of automated and manual malware analysis (static and dynamic)
  • Experience investigating & responding to comprises by advanced attackers
  • Mixed skillset covering both offensive and defensive security
  • Basic development and scripting skills
  • Experience with modern offensive techniques and APT TTP's.
  • Experience with common network traffic analysis platforms and/or SIEM solutions

Our four promises to you…

  • Freedom – you will have the opportunity to define new ways of working how we engage with our customers, and how product value gets represented
  • You will work together with experienced and enthusiastic colleagues, and within WithSecure you'll find some of the best minds in the cyber security industry
  • Your work will be clearly visible and recognized – all over the world and across our business units
  • You can rely on the support from the entire WithSecure leadership including our top executives

Work with great people

Karolina Malagocka
Senior Marketing Manager
"We see the value of each and every person"
William Jardine
Managing Consultant
"The freedom is a big thing for me. The trust you are doing something worthwhile."
Robert Grześkowiak
Lead Software Engineer
"At WithSecure you won't feel bored. There are opportunities to learn new things every day."
Fairuz Zainor
Researcher
"I joined WithSecure (previously F-Secure) straight after graduating and now, 10 years later, I am still happy to be here."

Great Place to Work

  • Over 1,700 amazing colleagues in nearly 30 offices

  • Possibility to protect the world

  • Work with best of class experts who care

  • Relaxed, open and fun working environment

  • 68+ of nationalities

  • Global with the spirit of a small company

About the company

Purpose – Why we exist
We are here to build and sustain trust in a digital society
We are here to build and sustain trust in a digital society — trust that is threatened by uncertainty, fear and worry caused by cyber attacks and crime.

Vision – Where we are heading
No one should experience a serious loss because of a cyber attack
We envision a future where no one should experience a serious loss or be put out of business because of cyber attack or crime. At least no one who puts their trust in us.

Mission – What we do
Accelerate transition to outcome-based security
Our mission is to research, innovate and build technologies, human expertise and delivery-business models that will accelerate our customers’ and partners’ transition to outcome-based security.

Marta Luczak | Contact Person

I'm interested
WithSecure

Warszawa +2 more
Visit website