Cyber Threat Hunting

hace 3 semanas


Madrid, Madrid, España WTW A tiempo completo

The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function. In this critical role, you will leverage your expertise to proactively detect, investigate, and mitigate sophisticated external and insider threats. This is a hands-on role responsible for conducting proactive and reactive threat hunts.

The individual may have line-management responsibilities for analysts within the Cyber Threat Hunting Team and will contribute to process and procedure development, ensuring best practices are followed to meet WTW requirements. They will be expected to grow and develop analysts and be part of WTW's intelligence-led cyber defense strategy. We seek a collaborative, passionate, hands-on technical team player with excellent coordination and communication skills, who enjoys operating in a fast-paced environment. The successful candidate will build strong relationships with other ICSD teams, partner teams, and wider business stakeholders to ensure success. They must be able to prioritize effectively and serve as an expert in providing technical analysis, assessment, and mitigation recommendations for escalated security incidents requiring deep technical knowledge.

The individual will work as part of a global, multi-disciplined security community with strong support across the business, fostering a security-aware culture and ensuring WTW remains a great place to work. With WTW's large global footprint, this role offers a fascinating range of work, and occasional global travel may be required.

The Cyber Threat Hunting Senior Associate will provide global threat hunting and forensic capabilities for WTW. Responsibilities include:

  1. Global Threat Hunting
  2. Conduct threat-hunting operations to identify and mitigate potential threats before they impact the organization.
  3. Develop and execute hypothesis-driven threat hunting techniques to uncover adversary tactics, techniques, and procedures (TTPs).
  4. Deliver detailed threat analysis and reports to executive leadership and stakeholders.
  5. Provide actionable recommendations to enhance the organization's security posture.
  6. Develop and implement advanced log analysis and search capabilities to identify sophisticated external and insider threats.
  7. Investigate anomalies, correlate findings with threat intelligence, and propose mitigation strategies.
  8. Perform targeted threat-hunting campaigns using adversary TTPs and insights from system telemetry and security data sources.
  9. Support incident investigations by providing detailed analysis and insights derived from threat-hunting operations.
  10. Share findings, analysis, and recommendations with cross-functional teams to improve overall security posture and incident response.
  11. Contribute to designing and implementing advanced threat detection methodologies, playbooks, and automation processes.
  12. Provide thought leadership and mentorship to junior analysts, fostering a continuous learning culture.
  13. Analyze security trends and assess their impact, providing actionable insights to leadership.
  14. Serve as an escalation point during critical cybersecurity incidents, providing incident response, digital forensic analysis, and malware assessment to support containment, eradication, and recovery.
  15. Conduct host and network forensics, log analysis, and evidence collection for on-premises and cloud systems, ensuring proper chain of custody and documentation.

Qualifications

We are looking for a candidate with the following qualifications:

  • A detail-oriented professional with a proactive mindset to stay ahead of emerging threats.
  • A team player who thrives in a collaborative environment and can navigate complex challenges effectively.
  • Passionate about making a tangible impact on WTW's cybersecurity resilience.
  • Extensive experience in cyber threat hunting, security incident response, and digital forensics in fast-paced, global environments.
  • Proven ability to mentor and coach analysts, fostering skill development and career growth.
  • Strong problem-solving and analytical skills, with the ability to influence stakeholders and drive effective decisions.
  • Expertise in adversarial TTPs, the MITRE ATT&CK framework, cyber kill chain, and hacking/post-exploitation tools.
  • Proficiency in interpreting and querying diverse log types and conducting threat hunts within SIEM and EDR tools.
  • Knowledge of forensic methodologies, open-source tooling, and cloud security, including incident response in cloud environments.
  • Experience delivering technical presentations and reports to technical and non-technical audiences.
  • Familiarity with scripting languages such as Python, PowerShell, and KQL.
  • Industry-recognized certifications in Cyber Incident Response, Forensics, or Malware Analysis are a plus.
  • Strong communication and interpersonal skills to convey security concepts effectively.

The Application Process

Stages include:

  1. Online application and recruiter review
  2. Online assessments
  3. Pre-recorded video interview
  4. Live video interview with the hiring team
  5. Offer and onboarding

We are committed to equal employment opportunity and provide accommodations for applicants. If you foresee any barriers, please email candidate.helpdesk@willistowerswatson.com.

#J-18808-Ljbffr
  • Cyber Threat Hunting

    hace 2 semanas


    Madrid, Madrid, España myGwork A tiempo completo

    This job is with WTW, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Description .The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function, in this critical role, you will leverage...

  • Cyber Threat Hunting

    hace 1 semana


    Madrid, Madrid, España myGwork A tiempo completo

    This job is with WTW, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.Description.The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function, in this critical role, you will leverage your...

  • Cyber Threat Hunting

    hace 2 semanas


    Madrid, Madrid, España WTW A tiempo completo

    The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function. In this critical role, you will leverage your expertise to proactively detect, investigate, and mitigate sophisticated external and insider threats. This is a hands-on role responsible for conducting proactive and reactive threat hunts. ...

  • Cyber Threat Hunting

    hace 2 semanas


    Madrid, Madrid, España WTW A tiempo completo

    The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function. In this critical role, you will leverage your expertise to proactively detect, investigate, and mitigate sophisticated external and insider threats. This is a hands-on role responsible for conducting proactive and reactive threat hunts....

  • Cyber Threat Hunting

    hace 1 semana


    Madrid, Madrid, España WTW A tiempo completo

    The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function. In this critical role, you will leverage your expertise to proactively detect, investigate, and mitigate sophisticated external and insider threats. This is a hands-on role responsible for conducting proactive and reactive threat hunts....

  • Cyber Threat Hunting

    hace 2 semanas


    Madrid, Madrid, España myGwork A tiempo completo

    This job is with WTW, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Description .The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function, in this critical role, you will leverage...

  • Cyber Threat Hunting

    hace 2 semanas


    Madrid, Madrid, España myGwork A tiempo completo

    This job is with WTW, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Description .The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function, in this critical role, you will leverage your...

  • Cyber Threat Hunting

    hace 4 días


    Madrid, Madrid, España myGwork A tiempo completo

    This job is with WTW, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Description .The Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber Security Defence (ICSD) function, in this critical role, you will leverage...

  • Cyber Threat Hunting

    hace 3 semanas


    Madrid, Madrid, España IST Group A tiempo completo

    Join to apply for the Cyber Threat Hunting - Lead Associate role at WTW1 day ago Be among the first 25 applicantsJoin to apply for the Cyber Threat Hunting - Lead Associate role at WTWSenior Talent Aquisition Specialist @ WTW | Senior International Recruiting, MultilingualThe Cyber Threat Hunting Senior Associate sits within the Global Information and Cyber...

  • Cyber Threat Hunting

    hace 3 semanas


    Madrid, Madrid, España Willis Towers Watson A tiempo completo

    Join to apply for the Cyber Threat Hunting - Lead Associate role at WTW 1 day ago Be among the first 25 applicantsJoin to apply for the Cyber Threat Hunting - Lead Associate role at WTW Senior Talent Aquisition Specialist @ WTW | Senior International Recruiting, MultilingualThe Cyber Threat Hunting Senior Associate sits within the Global Information and...