Job board
Companies
WithSecure

Threat Hunter

WithSecure
Regular
Experience level
Undisclosed salary
Salary
Poznań/Remote
Location
1000-5000
Number of employees
n/a
Team size
0%
Remote possibility
Must have
malware analysis
process injection
covert C2
EDR
APT
International team
Yes
Choose work tools
No
Paid holidays
Yes
Change project
No

At WithSecure™, we protect businesses all over the world. Our SaaS solutions safeguard against modern cyber threats, and our innovative Co-security approach reflects our belief that true protection requires collaboration and shared expertise. No one can solve every cyber security problem alone. Our vision is to become Europe’s flagship in cyber security. Every day, our talented teams work to prevent cyber extortion, secure critical infrastructure, and prevent misuse of sensitive data. At WithSecure, it’s our people who make us exceptional – a diverse community that values passion, purpose, and a commitment to workplace well-being. If you’re ready to make an impact with a company that’s transforming cybersecurity, we’d love to hear from you.

WithSecure is world renowned for its End Point Protection solutions – providing preventative and proactive protection to tens of millions of computer and smart devices globally. Over the past few years, the company has successfully entered new markets and has increased its portfolio of solutions to include Cyber Consulting and Managed Detection and Response Solutions.

Our Managed Detection and Response (MDR) business provides a world leading managed service, WithSecure Countercept, that detects and responds to cyber-attacks on behalf of our clients using a strong combination of people, process and technology. Much of the technology is designed and built in house by the WithSecure engineering team specifically to support the managed service or as leveraged products that WithSecure also provides to the wider market.

MDR team comprises several sub teams: the Detection & Response Team (DRT) who uncover adversaries on our client’s networks and contain attacks using their Incident Response skill, the Research Team who uncover new and emerging offensive and defensive techniques, and the Technical Operations team who maintain and develop the attack detection infrastructure to ensure it remains at the bleeding edge.

Currently we are looking for a Threat Hunter (regular or junior) to join our growing DRT team. DRT team actively monitors customer estates protected by WithSecure Countercept sensors, actively hunts for threats in vast amount of data we continuously collect and does the detection engineering. This is a position where you can grow in several technically advanced areas and use this experience to hunt for unseen threats.

We are looking for a candidate with bundles of enthusiasm, a hunger to improve their security knowledge and the desire to combat adversaries targeting our customers’ networks.

Who we think will be a great fit

If any of these points pique your interest, you will seamlessly integrate into the team and succeed:

  • Terms like threat hunting , malware analysis , process injection , covert C2 , EDR and APT excite you

  • You love nothing more than reading about attacker techniques and are keen to thwart and respond to the ever-evolving threats they present to our clients

  • You are both using and developing cutting edge tools to aid detection and response and are keen to keep up with the latest industry developments

  • You will have real-world experience responding to attacks of all levels, from script kiddies to nation states, and relish sharing this experience and knowledge with the rest of the team and the industry at large

  • You keep up with the latest industry developments, are an avid reader of things like /r/netsec to get your security knowledge fix.

The Countercept platform is a dynamic and rapidly evolving product, which is heavily research led. The ideal candidate would be able to contribute to enhancing the capability of the service, whether through direct development, research activities or media opportunities.

The ideal candidate should also have some experience in both offensive and defensive security areas, either penetration testing, incident response or a mixture of both.

As a successful Threat Hunter you will have the chance to:

  • Proactively investigate host, network and log-based security events

  • Manage incidents from detection to resolution (Yes! You will be tasked to respond to threat as well)

  • Research new attack techniques to uncover innovative detection capabilities

  • Liaise with clients and report potential findings from both a technical and business perspective

  • Assist in development of the Countercept service

  • Develop strong knowledge of core IP networking and common protocols, as well as understanding of Windows and Linux internals

  • Gain hands-on experience of automated and manual malware analysis (static and dynamic) and of network, memory and host forensics

  • Investigate & respond to comprises by advanced attackers

  • Grow a mixed skillset covering both offensive and defensive security, including development and scripting skills

  • Learn about modern offensive techniques and APT TTP's

  • Work with common network traffic analysis platforms and/or SIEM solutions

Our four promises to you…

  • Freedom – you will have the opportunity to define new ways of working how we engage with our customers, and how product value gets represented

  • You will work together with experienced and enthusiastic colleagues, and within WithSecure you'll find some of the best minds in the cyber security industry

  • Your work will be clearly visible and recognised – all over the world and across our business units

  • You can rely on the support from the entire WithSecure leadership including our top executives

You can’t design culture!

The WithSecure team is diverse, fluid, fun-loving, and full of energy. It’s our job to preserve that, so we’ve made it our business to help individuals traverse from passion to passion, from specialism to specialism, from the flavor of today to tomorrow’s. We move with their needs, and help them build pathways, always focusing on the things that make them happy in and beyond of the office.

Company
Company
WithSecure
Address
Helsinki
Forms of cooperation
Full-time
B2B
About company

WithSecure™, formerly F-Secure Business, is Europe's cyber security partner of choice. Trusted by IT service providers, MSSPs, and businesses worldwide, we deliver outcome-based cyber security solutions that protect mid-market companies. Committed to the European Way of data protection, WithSecure prioritizes privacy, data sovereignty, and regulatory compliance. Boasting more than 35 years of industry experience, WithSecure™ has designed its portfolio to navigate the paradigm shift from reactive to proactive cyber security. In alignment with its commitment to collaborative growth, WithSecure™ offers partners flexible commercial models, ensuring mutual success across the dynamic cyber security landscape. Central to WithSecure's™ cutting-edge offerings is Elements Cloud which seamlessly integrates AI-powered technologies, human expertise, and co-security services. Further, it empowers mid-market customers with modular capabilities spanning endpoint and cloud protection, threat detection and response, and exposure management. WithSecure™ Corporation was founded in 1988, and is listed on the NASDAQ OMX Helsinki Ltd.

Are you interested in the offer?