Job Specifications
Role Description
Senior Threat Hunter with Python
Paris (Hybrid)
Full Time – Permanent/ Contract
CyberProof (A UST Company) is seeking a highly skilled Senior Threat Hunter with strong Python development and Jupyter Notebook expertise to join our managed services team. You will proactively hunt across large‑scale network, endpoint, and cloud environments while building automated hunting frameworks that enhance detection and investigation.
The Role
Conduct hypothesis‑driven hunts aligned to MITRE ATT&CK and current threat trends.
Analyse diverse telemetry (network, endpoint, cloud) to detect anomalies and IOCs.
Build and maintain Jupyter-based hunting frameworks with enrichment, validation, and automation.
Develop reusable Python tools, APIs, and data pipelines for scalable hunting automation.
Orchestrate and schedule hunts (e.g., Azure ML pipelines or equivalent).
Collaborate with Threat Intelligence and Detection Engineering to close detection gaps.
Produce clear reports summarizing hypotheses, findings, and recommendations.
What You Will Bring
Minimum of 5+ years in Threat Hunting, Detection Engineering, or Incident Response.
Deep knowledge of adversary TTPs and MITRE ATT&CK; experience with SIEM, EDR, and datalakes.
Strong understanding of Windows and Linux/Unix internals; network, endpoint, and cloud log analysis.
Hunting experience across AWS/GCP/Azure.
Proven ability to build Jupyter-based hunting environments and automate hunt workflows.
Excellent communication and analytical skills.
Python Programming — Required
Advanced Python proficiency for hunting automation and data engineering.
Experience building reusable modules/packages, APIs, and CLI tools for hunts.
Strong with Pandas, MsticPy, NumPy, data parsing (JSON/CSV/Parquet), and enrichment workflows.
Notebook automation, templating and reporting (e.g., Jinja2), and results processing at scale.
Code quality practices: unit tests, linting, version control (Git), and CI/CD integration.Performance-aware coding for large datasets; familiarity with async and batching patterns is a plus.
Nice To Have
Integrations with Cybereason, Microsoft Sentinel/Defender, CrowdStrike, etc.
Certifications: GIAC (GCIH/GCFA/GREM), OSCP, CEH, or similar.
Hurry & Apply for a more detailed conversation!
#UST
Skills
Threat Hunting,MitRE Mapping,CyberSecurity
About the Company
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients' organizations. With over 29K+ employees in 30 countries, UST builds for boundless impact--touching billions o...
Know more