Threat Hunter

Threat Hunter

At Allstate, great things happen when our people work together to protect families and their belongings from life's uncertainties. And for more than 90 years our innovative drive has kept us a step ahead of our customers' evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection.

Job Description

We are seeking an experienced Threat Hunter to perform intelligence-driven network defense supporting the monitoring and incident response capabilities. The role will involve analysis of large amounts of data from vendors and internal sources, including various indicator feeds, Splunk, and several threat intelligence tools, etc. The candidate will perform the functions of threat operations and hunting and serve as a liaison for Threat Intelligence for the Cyber Security Operations Center, and mentor the incident handling, incident response, and forensics teams.

Key Responsibilities

• Performs research and analysis of potential and known threats and vulnerabilities for assigned areas and cybersecurity operational systems; designs, executes, and records results of testing plans and scripts and suggests improvements
• Understanding of common network and application stack protocols, including but not limited to TCP/IP, SMTP, DNS, TLS, XML, HTTP, etc.
• Experience with security operations tools, including but not limited to:
  • SIEM (e.g. Defender, Splunk, ArcSight)
  • EDR (e.g. CrowdStrike, Tanium)
  • Indicator management (e.g. ThreatConnect)
  • Signature development/management (e.g. Snort rules, Yara rules)
• Knowledge of common security infrastructure tools (NIDS, HIPS, EDR, etc.)
• Excellent analytical and problem solving skills, a passion for research and puzzle-solving.
• Understanding of large, complex corporate network environments.
• Strong communication (oral, written, presentation), interpersonal and consultative skills, especially in regard to white papers, briefs, and presentations.
• Good organization and documentation skills
• Peer collaboration and mentorship skills
• Critically evaluates business processes and cybersecurity systems to develop incident response plans for assigned area; executes plan to detect, alert, and contain intrusions and attacks, ensure required actions are taking place, and communicate status to affected areas and leadership.

Education

• 4 year Bachelors Degree (Preferred)

Experience

• 2 or more years of experience (Preferred)

Supervisory Responsibilities

• This job does not have any supervisory duties

Education & Experience (in lieu)

• In lieu of the above education requirements, an equivalent combination of education and experience may be considered.

Primary Skills

Cyber Defense, Cyber Threat Analysis, Cyber Threat Hunting, Cyber Threat Intelligence, Endgame Threat Hunting, IT Security Operations, Security Tools, Technical Investigation, Threat Assessment, Threat Modeling, Threat Monitoring, Vulnerability Scanning

Shift Time

Shift B (India)

Recruiter Info

About Allstate

Joining our team isn't just a job — it's an opportunity. One that takes your skills and pushes them to the next level. One that encourages you to challenge the status quo. One where you can shape the future of protection while supporting causes that mean the most to you. Joining our team means being part of something bigger – a winning team making a meaningful impact.

The Allstate Corporation is one of the largest publicly held insurance providers in the United States. Ranked No. 84 in the 2023 Fortune 500 list of the largest United States corporations by total revenue, The Allstate Corporation owns and operates 18 companies in the United States, Canada, Northern Ireland, and India. Allstate India Private Limited, also known as Allstate India, is a subsidiary of The Allstate Corporation. The India talent center was set up in 2012 and operates under the corporation's Good Hands promise. As it innovates operations and technology, Allstate India has evolved beyond its technology functions to be the critical strategic business services arm of the corporation. With offices in Bengaluru and Pune, the company offers expertise to the parent organization's business areas including technology and innovation, accounting and imaging services, policy administration, transformation solution design and support services, transformation of property liability service design, global operations and integration, and training and transition.

Learn more about Allstate India here.

Experience LevelMid Level

---