How you'll help us Keep Climbing (overview & key responsibilities)
At Delta Air Lines,
connection is at the heart of everything we do and guides our every action. We
strive to welcome and care for all of our customers during their travels with
us and aim to deliver an elevated experience.
Delta is focused on
sustaining a strong IT operation, growing our capabilities, and maximizing
optimization across each of our tech hubs to elevate the travel experience for
our customers and empower our 90,000 Delta people.
We're committed to
fostering innovation, and we're excited to invite you to be part of our journey
as we shape the future of technology at the world's best airline!
Delta Air Lines is looking for a talented experienced Cyber Threat Intelligence & Hunting Lead to be a part of Delta's Information Security team committed to safeguarding information and information systems from unauthorized access, use, disclosure, disruption, modification or destruction.
As Cyber Threat Intelligence & Hunting Lead, you will use your technical experience to profile and build defenses against existing and emerging threats to Delta's IT landscape. You will also apply your technical knowledge to solving complex intelligence problems, produce short-term and long-term written assessments, and brief Delta's leadership. Cyber Threat Intelligence & Hunting Lead is a SOC fusion role that combines threat intelligence and threat hunting operations reporting to the Manager of Cyber Threat Intelligence (CTI) but also closely aligned with the Cybersecurity Monitoring & Incident Response (CMIR) team in both strategic and day-to-day operations.
YOUR RESPONSIBILITIES IN THIS ROLE
Identify emerging and persistent threats to the organization's networks, systems, and applications.
Lead coordinated efforts across SOC teams to ensure the effective delivery and tracking of intelligence driven responses to threats.
Operate and mature process related to the threat hunting program across SOC teams and related security vendors/services.
Develop a threat assessment/modeling framework documenting threats to aid in driving resiliency initiatives that require broader non-SOC business partner buy-in.
Develop rules & policies across the technology and security stack that deliver protective and detective controls.
Mentor and develop Cyber Threat Intelligence and Incident Response analysts on hunt methodology, adversary TTP analysis, and detection tuning.
Security Engineering related to cyber threat intelligence services portals and Threat Intelligence Platform (TIP).
What you need to succeed (minimum qualifications)
At least 10 years of experience in the IT space with at least 5 years of experience in Cybersecurity roles/duties focused on threat intelligence, monitoring, and incident response.
Experience developing and managing detection rules in SIEMs
Experience with EDR, NDR and CDR solutions with a focus on policy/rule management
Experience in threat research, vulnerability research, malware analysis and exploit investigation.
Understanding of MITRE ATT&CK, Cyber Kill Chain, Pyramid of Pain, Threat Hunting Frameworks
Solid understanding of networking (WAN, LAN, wLAN), network domains (Internet, intranet, DMZ), communication techniques/protocols (IP and others), and their combined effects on network and host systems security.
Understanding of Linux/Unix platforms.
Comfortable handling multiple deliverables and able to manage priorities in a time-sensitive environment.
Strong written and verbal technical and non-technical communication skills. Assures smooth flowing, timely transmission of critical information. Oral and written communication is well organized, clear, accurate, grammatically correct, and is adapted for the target audience, including C-Suite.
Collaborative, embraces diverse people, thinking and styles.
Consistently makes safety and security, or self and others, the priority.
High School Diploma, GED or High School Equivalency.
What will give you a competitive edge (preferred qualifications)
Security Engineering of Threat Intelligence Platform (TIP)
Preferred key industry certifications such as CEH, Security+, CISSP, CISA, CISM, GCIH, etc.
Bachelor's Degree in Computer Science, Information Systems
Familiarity with YARA, OpenIOC, and STIX frameworks.
Understanding of Cloud Infrastructure and Cloud Security.
Adversary emulation tools, Python scripting, malware analysis
Benefits and Perks to Help You Keep Climbing
Our culture is
rooted in a shared dedication to living our values - Care, Integrity,
Resilience and Servant Leadership - every day, in everything we do. At Delta,
our people are our success. At the heart of what we offer is our focus on
Sharing Success with Delta employees. Exploring a career at Delta gives you a
chance to see the world while earning great compensation and benefits to help
you keep climbing along the way:
Competitive salary,industry-leading prot sharing program, and performance incentives
401(k) with generouscompany contributions up to 9%
New hires areeligible for up to 2-weeks of vacation. This is earned for use in the followingvacation year (April 1 - March 31)
In addition tovacation, new hires are eligible for up to 56 hours of paid personal timewithin a 12-month period
10paid holidays per calendar year
Birthing parents areeligible for 12-weeks of paid maternity/parental leave
Non-birthing parentsare eligible for 2-weeks of paid parental leave
Comprehensive healthbenets including medical, dental, vision, short/long term disability and lifeinsurance benets
Family careassistance through fertility support, surrogacy and adoption assistance,lactation support, subsidized back-up care, and programs that help with lovedones in all stages
Holistic Wellbeingprograms to support physical, emotional, social, and financial health,including access to an employee assistance program offering support for you andanyone in your household, free financial coaching, and extensive resourcessupporting mental health
Domestic andInternational space-available flight privileges for employees and eligiblefamily members
Career developmentprograms to achieve your long-term career goals
World-widepartnerships to engage in community service and innovative goals created tofocus on sustainability and reducing our carbon footprint
Business ResourceGroups created to connect employees with common interests to promote inclusion,provide perspective and help implement strategies
Recognition rewardsand awards through the platform Unstoppable Together
Access to over 500discounts, specialty savings and voluntary benefits through Deltaperks such ascar and hotel rentals and auto, home, and pet insurance, legal services, andchildcare
Delta Air Lines, Inc. is an Equal Employment Opportunity / Affirmative Action employer and provides reasonable accommodation in its application process for qualified individuals with disabilities and disabled veterans. If you are a qualified individual, you may request a reasonable accommodation if you are unable or limited in your ability to access job openings through this site, apply for jobs through Delta's online system, or at any point in the selection process. To request a reasonable accommodation, please click here
