Job Description

About NAB Innovation Centre India (NICI)

The global pandemic has accelerated a generational shift in technology. Today, 94 per cent of customer transaction activities are online, a clear departure from face-to-face banking. While NAB has strong technology foundations, we continue to drive our own digital transformation to match our customers expectations. Always looking to improve the way we operate for faster delivery and more efficiencies. Were running our operations end-to-end in house, helping us develop our deep expertise and leading capabilities to deliver exceptional outcomes. Our new NAB Innovation Centre India (NICI) will support NAB to deliver faster, better and more personalised experiences to customers and colleagues. Based in Gurugram, India, NICI will drive our innovation program and spark more opportunities.



Responsibilities:

• Develop and maintain cyber threat detection and hunting capabilities for NAB Group.
• Actively research, innovate and uplift in the areas of threat detection and hunting.
• Develop and maintain attack & use case models against NAB Group environment and systems for the purposes of detection and monitoring use cases.
• Build and maintain continuous validation and assurance of the detection and hunting pipeline.
• Maximise detection visibility, coverage, and return-on-investment to maintain a defensible architecture across the business.
• Develop threat/attack models to depict and model detection of known attack vectors.
• Work with Threat Intelligence, Incident Response and Cyber Orchestration teams to prioritise and develop detection and orchestration capability.
• Work with the Red Team to actively test and validate detection capabilities.
• Contribute to the teams performance, including but not limited to:
• Improve Time to Detect
• Reduce Time to Respond (through detection uplift as well as Automation)
• Increase detection fidelity ratio & reduce false positives.
• Increase Detection coverage
• Maintain Detection currency
• Increase overall maturity of the team (primarily NIST DETECT pillar)

Skills & experience:

• 5+ years of experience in Cyber Detection & Hunting, Incident Response
• 3+ years create use case, creating dashboard, reports etc. within a SIEM environment (such as Splunk ES)
• 2 years + experience working with Splunk or MS Defender Advanced Hunting.
• Well versed in the development of detection and hunting strategies for a broad range of cyber threats, including malware, DDOS, hacking, phishing, lateral movement and data exfiltration.
• Experience working with security tools such as endpoint detection and response systems, network anomaly detection etc.
• Experience working with one or more cloud environments (AWS, Azure etc) and awareness of threats impacting them.
• Demonstrated willingness to engage in self-learning or cyber security research
• Participating in threat/attack modelling based on NIST/Mitre framework to derive abuse cases, detection logic and automation course of actions.
• Ability to think like an adversary/threat actor.
• Working in large/complex environments.
• Pro-active & energetic work ethic.
• Participation in Purple teaming exercises, including network, infrastructure and application exploitation would be a plus.
• Knowledge of the following frameworks is required:
• NIST Cybersecurity framework
• MITRE ATT&CK

Lockheed Martin Cyber Kill Chain or similar methodologies

About the job

This role is for a Senior Analyst - Cyber Detection & Hunting to help contribute and drive the Cyber Detection & Hunting capability for NAB Group. You will be working with stakeholders to build use cases, custom rules for detection, scale up incident response capabilities (automated and manual). The role requires strong experience in a Detection & Hunting environment on SIEM platforms. Your role is critical in providing specialist technical capabilities across a multi-cloud and on-prem environment, Cyber Defence detection and response platforms. Experience and skills with analytics and data science would be a plus but not mandatory.

NAB Innovation Centre India (NICI)