Sr Threat Hunter
About the role
The Senior Threat Hunter in Unit 42 plays a critical role in safeguarding organizations against cyber threats by proactively searching for threats across multiple datasets. They lead and conduct threat hunting activities related to malware, threat actor groups, and campaign activity.
Responsibilities
- Proactively search for signs of malicious activity within an organization's network using advanced tools and methodologies.
- Identify anomalies and potential threats that may go undetected by traditional security solutions.
- Engage in research and experimentation to develop new hunting techniques and stay ahead of evolving threats.
- Work closely with other teams, such as Incident Response, Threat Intelligence, Customers, and cybersecurity leadership, to share findings and coordinate response efforts.
- Collaborate and guide our customers on the best ways to enhance their protection and readiness for future events.
- Improve Palo Alto Networks' solutions by identifying and analyzing new threats and tactics.
- Influence the industry by sharing knowledge and findings.
- Collaborate with multiple research and development groups.
- Contribute to making the world a safer and better place.
Requirements
- Understanding of the threat landscape, including attack tools, tactics, and techniques, as well as networking and security fundamentals.
- Experience investigating targeted, sophisticated, or hidden threats in both endpoints and networks.
- 4+ years of relevant experience with a proven track record in cybersecurity research, specializing in either APTs or cybercrime, but with the ability to address the broader threat landscape.
- Background in forensic analysis and incident response tools (both Dynamic and Static, such as IDA Pro, Ollydbg, and Wireshark) to identify threats and assess the extent and scope of compromises.
- Familiarity with organizational cybersecurity measures, including protective tools and remediation techniques.
- Experience utilizing XDR/EDR tools.
- Excellent written and oral communication skills in English.
- Strong attention to detail.
- Knowledge of advanced threat hunting methodologies and the ability to develop novel techniques.
- Experience in an Incident Response environment is a plus.
- Proficiency in Python and SQL is beneficial.
- Familiarity with reverse engineering is advantageous.
- Able to simplify and clarify complex ideas.
- Experience in writing technical blog posts and analysis reports.
- Ability to analyze and understand the infrastructure of malicious campaigns.
- Self-starter who can work independently and adapt to changing priorities.
Qualifications
- Undergraduate degree in Computer Science, Cybersecurity, or a related field.
- Passion for cybersecurity and a desire to contribute to making the world a safer place.
- Ability to work independently and as part of a team.
- Strong analytical and problem-solving skills.
- Ability to communicate effectively with stakeholders at all levels.
Skills
- Advanced threat hunting methodologies.
- Forensic analysis and incident response tools.
- Experience with XDR/EDR tools.
- Python and SQL proficiency.
- Reverse engineering skills.
- Effective communication skills.
- Attention to detail.
- Ability to simplify and clarify complex ideas.
- Experience in writing technical blog posts and analysis reports.
- Ability to analyze and understand the infrastructure of malicious campaigns.
Benefits
Our commitment to our employees includes a comprehensive benefits package designed to support your health, financial stability, and overall well-being. This includes:
- Health insurance options.
- Paid time off.
- Flexible spending accounts.
- Retirement savings plans.
- Employee assistance programs.
- Professional development opportunities.
- Discounts on products and services.
Pay
The starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be the annual range listed below. The offered compensation may also include restricted stock units and a bonus.
- $133,200.00 - $215,525.00/yr
Schedule
Most of our teams work from the office three days per week, with flexibility when it's needed. This model supports real-time problem-solving, stronger relationships, and the kind of precision that drives great outcomes.
Application Instructions
We do not accept applications for this position. Please refer to the job posting for further details.