Threat Hunting Analyst

About the role

The Computer Security Incident Response Team (CSIRT) is looking for a Threat Hunting Analyst to investigate security alerts, analyze telemetry, and mitigate malicious activity across endpoint, network, and cloud environments. You will work with cross‑functional teams to ensure rapid incident resolution and strengthen our security posture.

Key responsibilities

• Investigate security alerts, suspicious activity, phishing reports, and potential incidents across multiple platforms.
• Analyze endpoint, network, cloud, identity, and email telemetry to detect malicious or unauthorized behavior.
• Document investigations, analysis, decisions, and actions clearly and thoroughly.
• Coordinate incidents with internal teams such as engineering, infrastructure, legal, HR, and business partners.
• Support operational improvement initiatives, including detection tuning, workflow automation, and process documentation.
• Develop and refine standard operating procedures, playbooks, and analyst guidance.
• Collaborate globally to improve investigative consistency and response efficiency.
• Participate in proactive, intelligence‑driven threat hunting and identify emerging attacker tactics.

Required profile

• Bachelor’s degree or equivalent experience in Computer Science, Cybersecurity, or a related technical field.
• 3+ years of professional experience in cybersecurity operations, incident response, or threat detection.
• Proven experience investigating security alerts using endpoint, network, or cloud telemetry.
• Experience leading security incidents within an enterprise‑level case management or ticketing system.

Required skills

• Endpoint telemetry analysis
• Network telemetry analysis
• Cloud telemetry analysis
• Security incident response
• Enterprise ticketing / case management systems

What we offer

• Opportunity to work in a fast‑paced, global CSIRT environment.
• Continuous learning and professional development.
• Collaborative culture that values diverse perspectives.