Threat Hunting Researcher, Unit 42 MTH (MSIAM)

Palo Alto Networks•Madison, WI

1d•Remote

About The Position

At Palo Alto Networks®, we’re united by a shared mission—to protect our digital way of life. We thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge technology and bold thinking. Here, everyone has a voice, and every idea counts. If you’re ready to do the most meaningful work of your career alongside people who are just as passionate as you are, you’re in the right place. In order to be the cybersecurity partner of choice, we must trailblaze the path and shape the future of our industry. This is something our employees work at each day and is defined by our values: Disruption, Collaboration, Execution, Integrity, and Inclusion. We weave AI into the fabric of everything we do and use it to augment the impact every individual can have. If you are passionate about solving real-world problems and ideating beside the best and the brightest, we invite you to join us! This role is remote, but distance is no barrier to impact. Our hybrid teams collaborate across geographies to solve big problems, stay close to our customers, and grow together. You will be part of a culture that values trust, accountability, and shared success where your work truly matters. As a Threat Hunter (MTH), your impact will include helping multinational organizations stay one step ahead of adversaries and cyber threats, collaborating and guiding customers on enhancing protection and readiness, improving Palo Alto Networks' solutions by identifying and analyzing new threats and tactics, influencing the industry by sharing knowledge, collaborating with multiple research and development groups, and contributing to making the world a safer and better place.

Requirements

Understanding the threat landscape, including attack tools, tactics, and techniques, as well as networking and security fundamentals.
Experience investigating targeted, sophisticated, or hidden threats in both endpoints and networks.
3+ years of relevant experience with a proven track record in cybersecurity research, specializing in either APTs or cybercrime, but with the ability to address the broader threat landscape.
Background in forensic analysis and incident response tools (both Dynamic and Static, such as IDA Pro, Ollydbg, and Wireshark) to identify threats and assess the extent and scope of compromises.
Understanding of APT operations, including attack vectors, propagation, data exfiltration, lateral movement, persistence mechanisms, and more.
Familiarity with organizational cybersecurity measures, including protective tools and remediation techniques.
Excellent written and oral communication skills in English.
Strong attention to detail.
Knowledge of advanced threat hunting methodologies and the ability to develop novel techniques.
Ability to simplify and clarify complex ideas.
Experience in writing technical blog posts and analysis reports.
Ability to analyze and understand the infrastructure of malicious campaigns.
Self-starter who can work independently and adapt to changing priorities.

Nice To Haves

Experience in an Incident Response environment is a plus.
Proficiency in Python and SQL is beneficial.
Familiarity with reverse engineering is advantageous.

Responsibilities

Help multinational organizations stay one step ahead of adversaries and cyber threats.
Collaborate and guide our customers on the best ways to enhance their protection and readiness for future events.
Improve Palo Alto Networks' solutions by identifying and analyzing new threats and tactics.
Influence the industry by sharing knowledge and findings.
Collaborate with multiple research and development groups.
Contribute to making the world a safer and better place.
Perform threat hunting activities on any data source every day.
Deal with the latest cybersecurity research projects and attacks on a daily basis.
Build hypotheses, execute manual hunting techniques, gather and analyze results, perform forensic activities, and deliver reports.
Enhance your knowledge and experience in all domains of cybersecurity: Network, Endpoint, Cloud, IoT, Mobile devices, and 3rd-party vendor data sources.
Develop, create, and execute new hunting hypothesis methodologies to uncover threats, understand their root causes, and attribute them.
Leverage big data to discover threats and multiple threat intelligence.