Security Principal - iDefense Threat Hunting, OSINT & Reconnaissance (THOR)

Job description

Security Principal – iDefense Threat Hunting, OSINT & Reconnaissance (THOR)

Locations

Arlington VA/Washington DC - Other Major Accenture Office Locations may be considered for the right candidate (preferred Eastern Time Zone)

Join Accenture and help transform leading organizations and communities around the world. The sheer scale of our capabilities and client engagements and the way we collaborate, operate and deliver value provides an unparalleled opportunity to grow and advance.

Join the Accenture Security Practice and you will become part of the one of the fastest growing areas of the business with significant growth plans through additional recruitment and acquisitions. The Cyber Defence Consultant provides advisory and technical support to help our clients improve their Information Security posture to respond to the rapidly evolving Cyber Security threats. You will provide information security subject matter expertise and utilize your business acumen to work collaboratively with our clients to advise, design, build and implement pragmatic security solutions.

The Cyber Defence offering transforms clients to a proactive approach that builds resilience immediately into their traditional networks and endpoints (including the cloud, mobile devices and the internet of things). With advanced innovations and proven risk management models, we help clients make it harder for cyber criminals to succeed. Services include:

· Attack surface reduction
· Security transformation
· Advanced threat services
· Breach readiness and response

Job Description:

This is a role to join the iDefense Threat Hunting, OSINT & Reconnaissance team (THOR). The THOR team provides analysis of adversaries, active campaigns and leading indicators of impending attacks. The THOR team is responsible for the collection and analysis of DeepWeb/Darknet forums, persona development, HUMINT, infrastructure enumeration and targeted attacks. The THOR team covers a variety of threats including cybercrime, cyber espionage and hacktivism which lead to the development of both strategic and tactical reports to help protect our customers.

Your Role:

As a Security Principal, your primary role is to undertake research on threat groups and campaigns with a strong emphasis on crimeware such as exploit kits, banking trojans and ransomware. You will also be involved in our ongoing research efforts on targeted attacks and darkweb research.

Key Responsibilities May Include:

This role will also be responsible to support the THOR team in CBEST/CREST/STAR/TIBER engagements. You are expected to be a self-driven professional who is capable of identifying your own research projects, contribute ideas to improve our collection efforts and to provide technical supervision for our team of junior analysts.

The ideal candidate will also possess the following traits:

· Team oriented
· Results driven
· Strong passion and self-driven
· Well organised
· Able to work effectively under pressure

Desired profile

Qualifications :

Basic Qualifications:

·  Strong understanding of x86/64 assembly and malware analysis
·  Strong understanding of network intrusion models e.g. the kill chain
·  Proven experience in threat actor and campaign tracking
·  Experience in actor profiling
·  Experience in social engineering
·  Experience in deepweb/darknet forums
·  Published at least 5 technical reports
·  Proficiency in developing detection signature such as Yara, OpenIOC and Snort
·  Experienced in delivering technical presentations at top security conferences
·  Excellent written and oral English
·  Familiarity with Windows internals

Preferred Qualifications

·  Experience in incident response
·  Experience in red teaming
·  Knowledge of at least one or more of the following languages: Russian, Spanish, Portuguese or Arabic

OUR COMMITMENT TO YOU :

Your entrepreneurial spirit and vision will be rewarded, and your success will fuel opportunities for career advancement.

You'll make a difference for some pretty impressive clients. Accenture serves many of the Fortune Global 100 on high-profile projects.

Opportunities to learn daily through training, assignments and collaboration with experts across the company.

Access to leading-edge technology.

Along with a competitive salary, Accenture offers a comprehensive package that includes generous paid time off, 401K match and an employee healthcare plan.

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with Accenture (i.e., H1-B visa, F-1 visa (OPT), TN visa or any other non-immigrant status).

Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.

Accenture is an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.

Equal Employment Opportunity
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Accenture is committed to providing veteran employment opportunities to our service men and women.