Cyber Threat Analyst

We are a fast-growing Cybersecurity SaaS company, dedicated to protecting millions of users worldwide. As part of our continued expansion, we are looking for a talented Cyber Threat Analyst to join our Threat and Intelligence Response Center (TIRC) team.

As a Cyber Threat Analyst, your primary mission will be to proactively fight cyber threats by improving and updating Hornetsecurity’s security solutions. Your work will have a direct impact on the security of our customers in Canada and around the world.

We are looking for a candidate available 40 hours per week in a hybrid working model.

• Analyze threat events generated by our security services and classify threats (spam, scam, phishing, spear phishing, malware)
• Investigate basic to advanced threat campaigns to identify and neutralize malicious elements (IPs, domains, etc.)
• Design, maintain, and continuously improve detection systems to proactively block sophisticated threats
• Leverage reporting tools and spam traps
  to understand and anticipate sender behavior, monitor detection
  performance, and trigger investigations when anomalies are identified
• Produce clear documentation and reporting on malicious activity and attacker techniques, and conduct in-depth investigations on dedicated topics (phishing, spambots, scams, etc.)

We are primarily looking for someone engaged and motivated by cybersecurity, who is eager to grow in a stimulating environment.

• Experience in cybersecurity analysis, ideally within a SOC
• A strong desire to learn and continuously develop skills
• Solid threat analysis capabilities
• A logical and structured mindset (Boolean algebra)
• An interest in data analysis (experience with big data tools is a plus)
• Strong communication skills and a team-oriented mindset

You will benefit from a 3 to 6-month onboarding and training phase, allowing you to build expertise in cyber threats and our advanced detection tools.

To succeed in this role, you are curious, autonomous, rigorous, and show strong initiative.

Nice to have

• Knowledge of regular expressions (POSIX Regex)
• Proficiency with Windows and Linux environments and related commands (bash, grep, etc.)
• Knowledge of HTML and the SMTP protocol
• Experience with SPF, DMARC, DKIM, and a SIEM / ClickHouse
• Knowledge of the email security ecosystem

Fluency in written and spoken English

Room for innovation and autonomy within a fast-growing international company, along with personal and professional development opportunities

• Short decision-making processes and flat hierarchies in an open and collaborative work environment
• Additional paid sick days and public holidays, plus remote work options and flexible working hours
• Group health insurance plan
• Be-Active bonus – we support your well-being by covering part of your fitness and sports club membership
• “Way to Work” goodies & Regular team events and global meetings
• Temporary employee exchange program
  – the opportunity to work from our offices around the world and
  discover new cultures (e.g. Malta, Madrid, Berlin, Washington D.C.)