Cyber Security Engineer Job in Rakuten India Development Center

6-9 years of work experience in Security operations, with an exposure to Threat Intelligence, Threat Hunting and Forensics Bachelor s degree in Computer Science, Cyber Security, Information Systems, or equivalent Experience with working on Threat Intelligence Platforms (Flashpoint, ThreatConnect, Recorded Future, MISP, etc.). In-depth knowledge of the MITRE attack framework. In-depth knowledge of enterprise network architecture, networking concepts, and various operating systems (Windows, Linux, MacOS) Programming experience with Python, PowerShell, etc. Industry certifications such as SANS CTI, EC-Council CTIA, CISSP preferred. Ability to work in a fast-paced, operational environment, including non-standard work hours in response to Cyber Security incidents. Excellent written skills and has the ability to present complex technical information and metrics to both technical and nontechnical audiences. Ability to demonstrate analytical expertise, close attention to detail, excel

6-9 years of work experience in Security operations, with an exposure to Threat Intelligence, Threat Hunting and Forensics Bachelor s degree in Computer Science, Cyber Security, Information Systems, or equivalent Experience with working on Threat Intelligence Platforms (Flashpoint, ThreatConnect, Recorded Future, MISP, etc.). In-depth knowledge of the MITRE attack framework. In-depth knowledge of enterprise network architecture, networking concepts, and various operating systems (Windows, Linux, MacOS) Programming experience with Python, PowerShell, etc. Industry certifications such as SANS CTI, EC-Council CTIA, CISSP preferred. Ability to work in a fast-paced, operational environment, including non-standard work hours in response to Cyber Security incidents. Excellent written skills and has the ability to present complex technical information and metrics to both technical and nontechnical audiences. Ability to demonstrate analytical expertise, close attention to detail, excel

Security Audit Group

1

Threat Intelligence, OSINT, external landscape, proactive analysis, tactical intelligence, strategic intelligence, operational intelligence

Responsibilities: The role is highly responsive, and responsible for identification, analysis, processing, and distribution of actionable intelligence related to cyber threats and vulnerabilities based on relevancy. Prioritize and use information derived from open/commercial intelligence disciplines to determine new / changes in actor activity, capabilities, intent, and resources. Lead research efforts to track threats and actors relevant to the telecom industry. Technical analysis of Tactics, Techniques and Procedures (TTPs) used in cyber incidents and campaigns, and map them out to the MITRE attack framework to analyze patterns. Key focus on automation of processes as much as possible, and integration of threat intelligence to security tools. Perform structured intelligence analysis and add it to the Threat Intelligence Platform (TIP). Analyze attack vectors, find adversary information, establish intrusion chain, structured documentation of findings on the TIP, along with relevant tags for future use. Maintain awareness of latest trends and developments of the threat landscape through conducting research, training, and attendance at conferences Providing Intelligence support to SOC, Incident Response teams and other business stake holders during incident investigations. Experience with operating forensics tools (e.g., X-Ways, Nuix, FTK, enCase) Experience conducting network forensics and analyzing PCAPs Engage with IT and Security teams to apprise them of threats to the technology landscape and drive remediation. Conduct weekly / monthly threat briefings to senior leadership on the current threat landscape, active campaigns, active threat groups and key geo political issues. Advise on relevant operational and strategic controls and remediation actions. Compile reports on incidents, campaigns, emerging threats etc. for technical and executive audience. Respond to requests for ad-hoc reporting and research topics from management as required. Stay up to date on the threat landscape.