Contract
Malaysia- Performing forensic-driven threat hunting activities to discover advanced attacks – including identifying threat actor groups and TTPs using static and dynamic analysis.
- Analyzing, triaging, and investigating security events across multiple platforms and using network, endpoint, and cloud telemetry.
- Managing complex security incident investigations end-to-end – including validation, escalation, and containment.
- Performing digital forensics on impacted assets including but not limited to server(s), endpoint(s) and virtualized systems.
- Drafting analysis / forensic report(s)
- Developing new use cases and playbooks based on EY threat intelligence and research.
- Conducting quality reviews of investigations to identify areas for improvement.
- Supporting in the development of EY’s detection rules and mechanisms.
- Developing key service reports and deliverables – including threat advisories, flash briefs, RFIs and monthly reports.
- Overseeing maintenance of system tickets and alerts.
- Handling security incident escalations from Level II analysts.
- Supporting in the development of other team members through knowledge sharing and collaboration.
- Maintaining current knowledge of InfoSec threats, vulnerabilities and TTPs.