Hiring.fm
DXC Technology

Senior Cyber Threat Hunter

USA - MA - ANY CITY Full time

Job Description:

DXC Technology (NYSE: DXC) empowers global companies to operate their mission-critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private, and hybrid clouds. Many of the world’s largest companies and public sector organizations trust DXC to deliver exceptional service across the Enterprise Technology Stack, driving performance, competitiveness, and customer experience. Discover more about our commitment to excellence for customers and colleagues at DXC.com

The main goal of Cyber Threat Hunting is to proactively identify undetected cyber threats affecting DXC and its customers. The Senior Cyber Threat Hunter will be responsible for providing technical support in the creation and delivery of technology solutions designed to meet both DFI’s and its customers’ business needs. Utilising a combination of both commercial platforms and Open-Source data, they will leverage intelligence to help formulate and deliver Threat Hunting and Incident Response services on behalf of DXC. As a Senior Cyber Threat Hunter the candidate is expected to help drive the progress of the team, providing new service ideas, helping create and design new methodologies in Hunting and take on new platforms and technologies that will ensure DXC continue to provide leading-edge service delivery in the Cyber Security area. Client-facing responsibilities will include presenting and explaining the Threat Hunt service reports, and handling of client queries. The candidate should be expert in producing reports and presentations and capable of using the full range of Microsoft Office applications. Further, they will participate in the continued development and back-end management of the required infrastructure to maintain these services. A strong familiarity with the principles of network and endpoint security, current threat landscape, and attack trends is required. The Senior Cyber Threat Hunter is accountable for consistent chargeability levels (or expense relief for internal project teams) and for assisting in meeting or exceeding revenue and customer satisfaction goals.

 

Responsibilities:

 

  • Provide leadership with Commercial Clients, handling Threat Hunt service requests, queries and issues. Responsible for ensuring specific client satisfaction and for delivering the regular client Threat Hunt reports and presentations

  • Lead a subset of team members in specific Client Threat Hunt exercises, managing workload distribution and organisation of all aspects of the delivery of the Threat Hunt service for the assigned client

  • Be a thought-leader in terms of development of Threat Hunt hypothesis and methodologies, along with service delivery improvement

  • Lead major Incident Investigations, tracking and coordinating the actions of team members

  • Report accordingly on status of client Threat Hunts to operational management

  • Analyse and correlate results from various technology platforms. This entails investigating and assessing the impact of security events resulting from hits on indicators of compromise (IOCs), indicators of attack (IOA), or behavioural patterns (TTP’s - Tactics, Techniques, and Procedures) derived from bespoke queries within available technology platforms

  • Participate where required in the design, execution, and reporting of Threat Hunt exercises on behalf of both DXC and their customers

  • Understand DXC’s technologies to deliver part of a Cyber Defense security service, which meets both DXC’s and their customers’ requirements

  • Conduct detailed security event analysis from a range of data sources including network traffic attributes, host-based attributes (such as memory captures, specific file artefacts, and disk images) to identify security incidents

  • Delivery of assigned tasks within the delivery cycle of a project or task.

  • Assist in other required DFI tasks such as internal Lab maintenance, installing new systems, applications, updating applications and OSs, firmware; scripting for automation using API interfaces where needed; assisting in the preparation of technical presentations and demonstrations to peers

  • Follow procedures to communicate, report, and escalate incidents to appropriate DXC operational management units, technical leads, and/or engineering specialists

  • Participate as part of a team, maintaining good relationships with team members, DXC colleagues and DXC customers

  • Provide mentorship to Cyber Threat Hunters, including the development of knowledge sharing sessions for new tooling use, and new methodological approaches

  • Understand the company strategy and values, and the role that the individual plays

  • Use the available knowledge and training tools and platforms to maintain and improve current skill level for the benefit of assigned projects, and professional development

  • Use and contribute appropriately to technical forums within the company environment and local professional communities and technical user groups

  • Able to travel to client sites when needed

  • Participation in an on-call rotation

Knowledge and Skills:

 

General:

  • Deep understanding of Windows Operating Systems and Linux Operating Systems

  • Deep understanding of the principles of Threat Hunting and Incident Response

  • Excellent communication skills and customer centric focus - ability to communicate clearly and in a timely manner with all customers, partners and users, internal and external

  • Excellent analytical and troubleshooting skills

  • Highly organised and capable of tracking and maintaining their own workload tasks

  • Excellent report writing skills

  • Team player. Ability to collaborate and cooperate with members of the DFI team and members of other teams

  • Understanding of 24x7 mission critical enterprise computing environments and the impact of service disruption on a company’s bottom line

  • Ability to pro-actively learn new technology, processes and other skills

  • Able to pro-actively search for solutions from knowledge bases, support documentation and other information.

  • Keen interest in continual learning and professional development

  • Flexible, self-motivated with the ability to work under pressure in an international and culturally diverse organization

Education and Professional experience:

 

Required

 

  • University Degree/Diploma in Computer Science, Digital/Cyber Security

  • Event and Alert analysis from platforms such as a SIEM

  • Log analysis – particularly Windows Event Logs, Web logs, Linux logs

  • More than 2 years experience with Endpoint Detection and Response (EDR) experience

  • Over 5 years of industry experience

 

Desirable:

  • 2+ years of Endpoint Detection and Response (EDR) experience

  • Other certifications (e.g. CHFI, CISSP, CEH, CompTIA Security +, GCIH, GREM, GCFA) Computer Forensics / Cyber Security / Ethical Hacking experience

  • Penetration Testing

 Other requirements:

  • Fluent in written and spoken English

Compensation at DXC is influenced by an array of factors, including but not limited to the experience, job-related knowledge, skills, competencies, as well as contract-specific affordability and organizational requirements. A reasonable estimate of the current compensation range for this position is $88,200 - $163,900.

Full-time hires are eligible to participate in the DXC benefit program.  DXC offers a comprehensive, flexible, and competitive benefits program which includes, but is not limited to, health, dental, and vision insurance coverage; employee wellness; life and disability insurance; a retirement savings plan, paid holidays, paid time off.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

If you are an applicant from the United States, Guam, or Puerto Rico

DXC Technology Company (DXC) is an Equal Opportunity employer. All qualified candidates will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, pregnancy, veteran status, genetic information, citizenship status, or any other basis prohibited by law. View postings below.

We participate in E-Verify. In addition to the posters already identified, DXC provides access to prospective employees for the Federal Minimum Wage Poster, Federal Polygraph Protection Act Poster as well as any state or locality specific applicant posters. To access the postings in the link below, select your state to view all applicable federal, state and locality postings. Postings are available in English, and in Spanish, where required. View postings below.

Postings Link

Disability Accommodations

If you are an individual with a disability, a disabled veteran, or a wounded warrior and you are unable or limited in your ability to access or use this site as a result of your disability, you may request a reasonable accommodation by contacting us via email.

Please note: DXC will respond only to requests for accommodations due to a disability.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.