Cyber Threat Hunter (Cybersecurity)

TL;DR

Cyber Threat Hunter (Cybersecurity): Researching and investigating hosts and networks to identify adversary tools, techniques, and procedures (TTPs) and provide reactive investigation support during security incidents. Focus on implementing proactive threat hunting activities, developing hunt queries and detections, and monitoring the evolving threat landscape.

Location: Remote (Costa Rica). No Visa sponsorship or relocation available.

Company

hirify.global is a global data and technology company providing information solutions and powering opportunities for people and businesses across various markets including financial services, healthcare, automotive, and insurance.

What you will do

• Implement proactive threat hunting activities based on intelligence and hypotheses across host, network, and cloud environments.
• Develop and refine hunt queries, detections, and rules (Yara, Sigma) for continuous improvement of detection engineering.
• Monitor the evolving threat landscape, vulnerabilities, and adversary TTPs to enhance hunting strategies.
• Document hunting methodologies, queries, findings, and recommended actions in SOPs and playbooks aligned to MITRE ATT&CK.
• Use SIEM, EDR, NDR, and UEBA tools to conduct hunts and confirm threats through forensic artifact analysis.
• Collaborate with incident response and forensic teams, and contribute to automation efforts by developing scripts and workflows.

Requirements

• 3–5 years of experience in cybersecurity with a focus on Threat Hunting, Incident Response, Forensics, or Detection Engineering.
• Bachelor's degree in cybersecurity, computer science, information technology, or a related field.
• Hands-on experience with SIEM, EDR, NDR, and forensic tools, with the ability to write hunt queries and detections.
• 3+ years of experience with at least one scripting or programming language (Python, PowerShell, or JavaScript) to support automation and custom tooling.
• Strong personal skills involving report writing, presentation, organization, and communication.

Nice to have

• Certifications such as GIAC Certified Incident Handler (GCIH), GIAC Network Forensic Analyst (GNFA), GIAC Cloud Forensics Responder (GCFR), or EC-Council Certified Ethical Hacker (CEH).

Culture & Benefits

• Permanent home-based role with flexible work options.
• Medical, life, and dental insurance.
• International Share Save Plan and Annual Performance Bonus.
• Education Reimbursement and Paid time off.
• Family Bonding and Bereavement Leave.
• Inclusive and diverse team environment.