Threat Intelligence Engineer
Location
Massachusetts | United States
Job description
Northwest Partners is looking to hire an experienced Threat Intelligence Engineer with strong Sumo Logic Threat Hunter experince to work with a premier client in the cybersecurity industry. This role is centered around leveraging Sumo Logic's powerful analytics to proactively hunt for and mitigate potential security threats before they impact business operations. Candidates must be legally authorized to work for any employer in the United States without sponsorship.
What YOU will do
- Utilize Sumo Logic's SIEM and analytics tools to proactively search for indicators of compromise (IoCs) and signs of advanced threats within the network and systems.
- Design and implement custom Sumo Logic queries and dashboards to identify anomalous activities and potential threats across diverse environments.
- Collaborate with cybersecurity and IT teams to refine threat detection capabilities and improve incident response strategies using Sumo Logic insights.
- Conduct in-depth analyses of log data, network traffic, and system activities to uncover hidden threats and vulnerabilities.
- Stay abreast of the latest cybersecurity threats, trends, and technologies, incorporating this knowledge into threat hunting activities.
- Develop and maintain documentation on threat hunting methodologies, procedures, and findings.
- Provide expert guidance and recommendations to enhance the organization's security posture based on findings from threat hunting activities.
- Participate in incident response efforts and lead training sessions to raise awareness of threat hunting practices and Sumo Logic capabilities.
What YOU will bring us
- Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field. Advanced degrees or certifications (e.g., CISSP, CEH, GCIH) are a plus.
- Minimum of 3 years of experience in cybersecurity, with a strong focus on threat hunting, incident response, or security analytics.
- Proficiency in Sumo Logic's SIEM and log management solutions, with the ability to develop complex queries and dashboards.
- In-depth understanding of network protocols, cybersecurity threats, attack vectors, and vulnerability management.
- Experience with scripting languages (e.g., Python, PowerShell) for task automation and data analysis.
- Excellent analytical and problem-solving skills, and strong communication abilities.
Benefits Include
- Health Insurance, Vision Insurance, Dental Insurance, Short-term Disability, Long-term Disability, Life Insurance, Education Benefits, and more.
About Northwest Partners:
Northwest Partners is an equal opportunity employer. At Northwest Partners, we are dedicated to moving at the speed of innovation. We work with clients across the globe to provide exceptional knowledge, talent, and resources. As a trusted partner, we merge the client's vision with our expertise to deliver powerful results. Northwest Partners is known for building and managing elite teams in technology across diverse industries. Our mission is to empower every talent and every client to achieve more.
Job tags
Salary
