Design and lead advanced threat hunting operations aligned with emerging TTPs and client threat models.
Develop custom threat detection logic and integrate threat intelligence into proactive detection strategies.
Lead threat modeling efforts, including building attacker profiles and emulating real-world adversaries.
Validate findings from other team members, guide incident response, and drive detection maturity improvements.
Improve team hunting methodology and internal documentation.
Lead configuration and optimization of TIP platforms, and design automated workflows.
Conduct deep forensic analysis and root cause investigations for high-severity incidents.
Mentor junior team members and contribute to the team's methodology, tools, and knowledge sharing.
Present threat hunting results, trends, and recommendations to stakeholders, including executives.
Requirements
Graduates from an Associate Degree, Bachelor of Applied Science or Applied Bachelor's Degree, Bachelor's Degree, or Master's Degree from an IT-related major.
Minimum 5 years in threat hunting, threat detection engineering, or incident response.
Deep knowledge of attacker behaviors, threat actor tactics, and post-exploitation techniques.
Strong familiarity with endpoint, network, and cloud-based hunting methods.
Advanced scripting or automation skills (Python, PowerShell, Bash).