Sentinel (or any SIEM tool). Must have administrative skills in several operating systems, such as Windows, OS X, and Linux Must be proficient in basic shell scripting, creating Snort rules, or other log-searching query languages and methods. Must be confident to handle common security incidents independently. Must have good understanding of Vulnerability Scanning and management as well More ❯
event log analysis. Hands-on experience with Microsoft Sentinel or similar SIEM tools. Administrative skills across multiple operating systems (Windows, OS X, Linux). Proficiency in shell scripting, creating Snort rules, or other log-searching query languages. Confidence in handling common security incidents independently. Good understanding of Vulnerability Scanning, Management, and Ethical Hacking (Penetration Testing). Knowledge of ITIL More ❯
and drive the development of new research capabilities without subject-matter limitations. Track and analyze the development of red team tooling Develop network and host-based detection rules (YARA, Snort, and Sigma) to detect APT and cybercriminal campaigns in line with Insikt's research goals Develop analysis and extraction tooling for malicious artifacts Develop emulation capabilities to track malicious … analysis of Windows binaries using tools such as IDA Pro, Ghidra, Binary Ninja, Windbg, x64dbg, dnSpy, and Wireshark Experience writing network and endpoint signature detections using YARA, Sigma, and Snort rules Experience scripting in Python, Go, PowerShell, or Bash Knowledge of Windows operating system internals and the Windows API Knowledge of TCP/IP and other networking protocols Ability More ❯
CSOC/SOC environment. Demonstrable technical knowledge, skills, and/or experience in intrusion analysis, and network and security investigation using a variety of security tools (EDR, DLP, AV, Snort, Wireshark, TCPdump, etc.). Working knowledge and experience of core security and infrastructure technologies (e.g., firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS). Strong More ❯
both written and spoken. Excellent presentation and analytical skills. Preferred Skills and Qualifications Understanding of MITRE ATT&CK techniques and ability to explain TTPs to clients. Experience creating SIGMA, SNORT, and YARA rules for detection. Control Risks offers a competitive compensation and benefits package, including a global bonus scheme and flexible working arrangements. We are committed to equal opportunity More ❯
