Offered Salary 1000
Experience 2 Years
Job Title: Principle Information Security Adversary Hunt
Overview Of BNY Mellon:
BNY Mellon is a global investments company dedicated to helping its clients manage and service their financial assets throughout the investment lifecycle. Whether providing financial services for institutions, corporations or individual investors, BNY Mellon delivers informed investment and wealth management and investment services in 35 countries. As of March 31, 2021, BNY Mellon had $41.7 trillion in assets under custody and/or administration, and $2.2 trillion in assets under management. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments. BNY Mellon is the corporate brand of The Bank of New York Mellon Corporation (NYSE: BK). Additional information is available on www.bnymellon.com . Follow us on Twitter @BNYMellon or visit our newsroom at www.bnymellon.com/newsroom for the latest company news.
A member of the team chartered with driving the cyber security hunt program within the firm. The candidate will be responsible for fulfilling technical responsibilities of the hunt team, including:
Analysis of network data (e.g., packets, logs) and endpoint data (e.g., logs, malicious artifacts) in both structured and unstructured methods.
Analysis of malware (executables, scripts, documents) to determine indicators of compromise, and create signatures for future detection of similar samples.
Conducting Red Team-style exercises to simulate attacks and gauge responsiveness of processes and procedures.
Creating a feedback loop with security control owners to help tune systems based on the results of investigations.
Acting as a high tier escalation point for security incidents to provide technical expertise to the incident response process.
Bachelor’s degree in computer science or a related discipline, or equivalent work experience required
10-12 years of experience in information security or related technology experience required experience in the securities or financial services industry is a plus
The ideal candidate will possess:
Fundamental understanding of application protocols (HTTP, DNS, FTP, etc.) and networking protocols (TCP, UDP, ARP, ICMP, etc.), and be comfortable analyzing packet capture (pcap) files in tools such as Wireshark
Knowledge of operating system internals (virtual memory, paging, etc.) and techniques employed by malware to evade detection
Proficiency in a Linux command line environment (awk, sed, grep, etc.) or Windows equivalent (Powershell) to analyze log files and other data sources and summarize data and locate anomalies
Proficiency in a scripting language (perl, python, etc.) to automate common tasks
Experience using SIEM tools including Splunk Strong communication skills to translate complex technical concepts into plain English for consumption by non-technical audiences
BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer. Minorities/Females/Individuals with Disabilities/Protected Veterans. Our ambition is to build the best global team – one that is representative and inclusive of the diverse talent, clients and communities we work with and serve – and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums.