Senior Threat hunter in Amsterdam

Senior Cyber Threat Hunter

Department: CISO

Background

The Global CISO organisation of ING is responsible to assist ING management, business and other tribes in providing customer friendly services in a safe and secure way. Business leaders and CISO are jointly responsible for bank-wide security. CISO is mandated to drive required change in all domains, business and IT. Within CISO, the Security Defence Center (SDC) is responsible for security incident management, threat management, threat hunting and forensics.

The senior threat hunter works within the SDC and is responsible for structurally analyzing available security and business related data on basis of external cyber security sources, threat intelligence and results of internal assessments.

With the expertise on security detection and operations, he or she will deliver necessary know how and skills within the squad to realize the squads shared purpose to identify cyber and insider attacks as soon as possible in order to enable adequate response, day by day.

The senior cyber threat hunter:

- combines data skills, cyber security skills and platform and application skills to develop effective and efficient queries to identify malicious behavior

-works together with cyber incident responders on complex security incidents

- works together with the squads that implement detection functionality (rules and models) to ensure the results of the threat hunting are actually put in production.

- works together with other teams to analyze security threats to ING;

Key Responsibilities

The senior threat hunter is:

• Supporting the CPO Security Detection in development and deployment of detection functionality in our infrastructure
• Identifying functional and non-functional requirements from stakeholders, aimed to provide high quality security detection for ING’s application landscape
• Performing research independently and relays the insights to the relevant teams within ING CISO and Tech
• Supporting development of the vision and roadmap for the security detection and response services of CISO (which are aligned with the overall vision and roadmap for the department)
• Providing expertise to structure, prioritize and coordinate backlog (i.e. addressing functional and non-functional requirements)
• Maintaining relations within the global and local security teams
• Reporting on progress of activities to the Head of SDR, CPO and other stakeholders

Audit & Compliance

• Work with the CPO Security Detection and ensure compliance of the new functionality to applicable standards and regulations

Requirements

Proven track record and technical skills:

• Master’s degree in Cybersecurity , computer science or comparable degree
• 5-10 years’ professional experience and relevant information security. Ideally in larger companies and corporate consulting experience is required.
• Subject matter expert in the area of threat hunting
• Excellent understanding of IT platforms, networking and (application) log data
• Good understanding of (security) data analytics, quantitative modelling of data and data research
• Strong knowledge of current security technologies and emerging trends in the area of security detection or monitoring
• Good oral and written communication skills
• Ability to simplify complexity and drive operational excellence
• Ability to support yourself and other team members in development
• Good level of English
• Experience in a financial environment is a plus