About the Role
Northern Trust is actively seeking a skilled Insider Threat Hunter Analyst to join our dynamic Security Operations team in Pune, India. This critical role focuses on proactively identifying and neutralizing insider threats and sophisticated attack techniques within the organization's environment. You will collaborate closely with Threat Intelligence, Cyber Threat Hunting, and Insider Risk teams to develop and implement strategies for detecting and responding to insider tactics and techniques. A key aspect of this position involves conceptualizing and deploying innovative insider threat hunt hypotheses and detection rules to significantly enhance our overall threat detection capabilities.
Key Responsibilities:
- Conduct proactive threat hunts specifically targeting potential insider threats, leveraging endpoint, network, and cloud log data.
- Develop and refine insider threat detection use cases to strengthen our defensive posture.
- Create and deploy insider-focused threat detection rules to identify malicious activities.
- Propose enhancements to insider monitoring, alerting mechanisms, and automation processes.
- Collaborate effectively with cross-functional teams to address complex insider risk scenarios.
- Maintain up-to-date knowledge of the latest insider threat trends, tactics, and techniques.