OpSec Team Lead

NSO Group provides vetted government agencies with cutting-edge technological solutions designed to prevent and investigate terrorism and crime. We are constantly exploring new technologies to address the next challenge in this dynamic, ever-changing market. Want to join us in making a difference (and have a lot of fun along the way)? Apply now

*As an OpSec Team Lead, you will:*

* Play a key role in detecting, managing and mitigating cybersecurity incidents
* Develop and maintain scripts for data parsing, packet analysis and correlation across multiple data sources
* Perform deep network traffic analysis to identify anomalies and suspicious behavior
* Leverage open-source tools and frameworks to support threat attribution and research
* Build and maintain integrations with APIs, threat-intel feeds and big-data platforms to enhance visibility and detection capabilities
* Collaborate with SOC analysts, networking teams and threat researchers to enhance detection logic and security monitoring coverage
* Document research findings, detection methods and analysis techniques for technical and non-technical stakeholders
* Continuously evaluate emerging technologies, frameworks and attack techniques to improve automation, proactive defenses threat-hunting methodologies and detection methods

*If you have:*

* 2+ years of managerial experience as a team leader and/or tech lead
* At least 2 years of experience in incident response, SOC operations, or a related cybersecurity role
* Strong knowledge of networking fundamentals and the MITRE ATTACK framework
* Experienced in working across multiple interfaces, coordinating effectively between teams and stakeholders to ensure seamless execution
* Programing/scripting experience in one or more languages, e.g., Python, Go, Ruby, Bash, PowerShell or Java
* Experience with Big Data analysis platforms and security monitoring tools for log analysis and investigation
* Practical experience with OSINT (Open-Source Intelligence) tools and methodologies for threat hunting, attribution or intelligence gathering
* Strong analytic skills, problem-solving and communication skills

*It would be great if you also have:*

* Experience responding to incidents in large-scale or complex environments
* Hands-on experience with cloud-based infrastructure
* Prior work in operational security or a related discipline

*Join NSO Group and make a difference!*

Job Type: Full-time