Senior Threat Hunter

Location: Barcelona, Catalonia – UST

UST is seeking top talent to join our Managed Services team as a Senior Threat Hunter. In this role, you will collaborate closely with a leading insurance client to identify and mitigate advanced cyber threats that slip past conventional defenses. Your mission is to investigate suspicious activities, uncover adversary tactics, and keep our customers one step ahead of evolving risks.

• Proactively drive hunting and analysis against available datasets from network, endpoint, and cloud environments to look for indicators of security breaches.
• Leverage internal and external resources to research threats, vulnerabilities, and intelligence on various attackers and attack techniques, to develop hunting workflows and mitigation steps.
• Innovate new processes and workflows to create proactive defenses against complex threats and risks.
• Design and implement data mining techniques to extract meaningful insights from large data sets.
• Develop and maintain an understanding of the latest cybersecurity technologies, trends, and threats.
• Participate in the development of reports and dashboards that provide insights into the client’s cybersecurity posture.
• Collaborate with cross‑functional teams to develop and implement new tools, techniques, and response workflows to enhance cybersecurity.

• 5+ years of experience as a Cyber Threat Hunter or Incident Response professional, with strong forensic skills and investigation of network, endpoint, and cloud logs.
• Deep knowledge of TTPs, attack frameworks (e.g., MITRE ATT&CK), and advanced threat actors.
• Experience with security applications such as data lakes, SIEM tools, and EDR platforms.
• Strong operating system expertise in Linux/Unix and Windows.
• Experience analyzing network traffic, packet captures, and log data.
• Proven skills in hunting on cloud assets – AWS, GCP, Azure.
• Strong understanding of Python libraries commonly used in data science, such as Pandas and MsticPY.
• Advantageous to have in‑depth knowledge of Jupyter Notebooks and experience using them for data analysis, visualization, and prototyping.
• Critical thinking, problem‑solving skills, and an innovative mindset.
• Excellent communication skills to explain technical findings to both technical and non‑technical audiences.
• Excellent organization, time management, and attention to detail.
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• Relevant certifications such as GIAC GCIH, GCFA, GREM, OSCP, CEH are an advantage.

• 23 days of Annual Leave plus the 24th and 31st of December as discretionary days.
• Numerous benefits, including Health Care Plan, teleworking compensation, Life and Accident Insurances.
• Free access to several training platforms.
• Professional stability and career development plans.
• Referral program.
• The option to choose between 12 or 14 payments throughout the year.
• Real work–life balance measures, such as flexibility, WFH or remote work policy, and compressed hours during summer.