Senior Threat Hunter

UST is looking for the very Top Talent…and we would be delighted if you were to join our family!

More in detail, UST is a multinational company based in North America, certified as a Top Employer and Great Place to Work company with over 35.000 employees all over the world and a presence in more than 35 countries. We are leaders on digital technology services, and we provide large-scale technologic solutions to big companies.

We are looking for a talented Senior Threat Hunter to join our expanding Managed Services team! In this exciting role, you’ll collaborate closely with a leading client in the insurance industry, taking the lead in identifying and mitigating advanced cyber threats that slip past conventional defenses. Your mission will be to investigate suspicious activities, uncover adversary tactics, and ensure our customers stay one step ahead of evolving risks. If you’re ready to make a real impact and work at the cutting edge of cybersecurity, this is the opportunity for you!

• Proactively drive hunting and analysis against the available dataset from various sources including, network, endpoint, and cloud environments to look for indicators of security breaches.
• Leverage internal and external resources to research threats, vulnerabilities, and intelligence on various attackers and attack techniques, to form hunting workflows and mitigation steps.
• Innovate new processes and workflows to deploy proactivity in all aspects to address complex threats and risks.
• Design and implement data mining techniques to extract meaningful insights from large data sets.
• Develop and maintain an understanding of the latest cybersecurity technologies, trends and threats.
• Participate in the development of reports and dashboards that provide insights into the cybersecurity posture of the client.
• Collaborate with cross-functional teams to develop and implement new tools, techniques, and response workflows to enhance cybersecurity.

• Proven experience of 5+ years as Cyber Threat Hunter or Incident Response, including high skills in forensics and investigation of network, endpoint and cloud logs.
• Deep and proven knowledge and understanding of TTPs, attack frameworks (e.g., MITRE ATT&CK), and advanced threat actors.
• Experience with security applications such as data lake, SIEM tools and EDR platforms.
• Deep and proven knowledge of operating systems essentials including Linux / Unix and Windows.
• Experience analyzing network traffic, packet captures, and log data.
• Proven skills on Hunting on Cloud assets – AWS, GCP, Azure.
• Strong understanding of Python libraries commonly used in data science, such as Pandas, and MsticPY.
• Advantageous to have in-depth knowledge of Jupyter Notebooks and experience in utilizing them for data analysis, visualization, and prototyping.
• Critical thinking, problem-solving skills and innovative way of thinking.
• Excellent communication skills to explain technical findings to both technical and non-technical audiences.
• Excellent organization, time management, and attention to detail.
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• Relevant certification (e.g., GIAC GCIH, GCFA, GREM, OSCP, CEH) is an advantage.
• Fluent in English

• 23 days of Annual Leave plus the 24th and 31st of December as discretionary days.
• Numerous benefits (Heath Care Plan, teleworking compensation, Life and Accident Insurances).
• Retribución Flexible Program : (Meals, Kinder Garden, Transport, online English lessons, Heath Care Plan…)
• Free access to several training platforms
• Professional stability and career plans
• Referral program
• The option to pick between 12 or 14 payments along the year.
• Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)