-
View all jobs
We have an urgent requirement for Cybersecurity -Threat Hunter Consultant with our client-based in QATAR
Strong proficiency in log analysis using tools like Splunk, ELK Stack, Sentinel, or QRadar.---Must
Deep understanding of network protocols, endpoint behavior, and attack lifecycle (MITRE ATT&CK framework).--Must
Experience with SIEMs, NDR (Exabeam, Extrahop, Vectra), EDRs (e.g., CrowdStrike, SentinelOne, Carbon Black), and threat intelligence platforms.---Must
Familiarity with scripting languages (Python, PowerShell, Bash) for automation and data parsing.---Must
We are seeking a highly skilled and experienced Threat Hunter to proactively detect and respond to advanced threats within enterprise IT, OT, IoT environments. This role focuses on identifying hidden attackers, insider threats, and persistent threats that evade traditional security controls. The ideal candidate will possess strong log analytics, intrusion analysis, and incident handling skills, and will be adept at working with large datasets and threat intelligence to uncover malicious activity.
Key Responsibilities
Strong proficiency in log analysis using tools like Splunk, ELK Stack, Sentinel, or QRadar.---Must
Deep understanding of network protocols, endpoint behavior, and attack lifecycle (MITRE ATT&CK framework).--Must
Experience with SIEMs, NDR (Exabeam, Extrahop, Vectra), EDRs (e.g., CrowdStrike, SentinelOne, Carbon Black), and threat intelligence platforms.---Must
Familiarity with scripting languages (Python, PowerShell, Bash) for automation and data parsing.---Must
We are seeking a highly skilled and experienced Threat Hunter to proactively detect and respond to advanced threats within enterprise IT, OT, IoT environments. This role focuses on identifying hidden attackers, insider threats, and persistent threats that evade traditional security controls. The ideal candidate will possess strong log analytics, intrusion analysis, and incident handling skills, and will be adept at working with large datasets and threat intelligence to uncover malicious activity.
Key Responsibilities
- Proactively hunt for hidden threats, including APTs and insider threats, across enterprise networks, endpoints, and cloud environments.
- Analyze logs, network traffic, endpoint telemetry, and other data sources to detect anomalies and indicators of compromise (IOCs).
- Develop and execute hypotheses-driven threat hunting campaigns.
- Perform intrusion analysis and reverse engineering of attacker techniques, tactics, and procedures (TTPs).
- Collaborate with SOC, Incident Response, and Threat Intelligence teams to validate findings and escalate confirmed threats.
- Create and maintain detection rules, scripts, and automation to improve threat visibility.
- Document findings, create detailed reports, and present threat hunting outcomes to stakeholders.
- Perform threat hunting using packet flows, NDR.
- Contribute to the continuous improvement of threat hunting methodologies and frameworks.
- Experience: 5–8 years in cybersecurity, with at least 3 years in threat hunting, incident response, or intrusion analysis.
- Technical Skills:
- Strong proficiency in log analysis using tools like Splunk, ELK Stack, Sentinel, or QRadar.
- Deep understanding of network protocols, endpoint behavior, and attack lifecycle (MITRE ATT&CK framework).
- Experience with SIEMs, NDR (Exabeam, Extrahop, Vectra), EDRs (e.g., CrowdStrike, SentinelOne, Carbon Black), and threat intelligence platforms.
- Familiarity with scripting languages (Python, PowerShell, Bash) for automation and data parsing.
- Knowledge of cloud environments (AWS, Azure, GCP) and associated threat vectors.
- Preferred Certifications:
- GIAC Certified Threat Hunter (GCTH)
- GIAC Cyber Threat Intelligence (GCTI)
- GIAC Certified Incident Handler (GCIH)
- Certified Ethical Hacker (CEH)
- CompTIA Cybersecurity Analyst (CySA+)
- MITRE ATT&CK Defender (MAD) certifications
- SIEM: Splunk, ELK, Microsoft Sentinel, QRadar
- EDR/XDR: CrowdStrike, SentinelOne, Microsoft Defender, Carbon Black
- NDR: ExtraHop, Vectra, ExaBeam, FireEye
- Threat Intelligence: MISP, ThreatConnect, Recorded Future
- Scripting: Python, PowerShell, Bash
- Cloud Security: AWS GuardDuty, Azure Security Center, GCP Security Command Center
- Other: Wireshark, Zeek, YARA, Sysmon, Velociraptor
Key Skills
Ranked by relevance
cybersecurity
powershell
python
splunk
elk
incident response
qradar
cloud
bash
aws
gcp
cyber threat intelligence
reverse engineering
microsoft defender
wireshark
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Cybersecurity Engineer – Managed XDR (mXDR)
2026-05-16
Full-time
Associate
United Arab Emirates
Technology
Information Technology
View Job Details
Related
Site Reliability Engineer – Wealth Management Systems (Prospero/Advent)
2026-05-20
Contract
Associate
United Arab Emirates
Technology
Engineering
View Job Details
Related
Senior AI Engineer - Chatbot & Agentic AI
2026-05-27
Full-time
Mid-Senior
Qatar
Technology
Engineering
Login to Apply
- Posted
- Jul 10, 2025
- Type
- Full-time
- Level
- Associate
- Location
- Doha
- Company
- TAT IT Technolgies
Industries
Technology
Information
Internet
Categories
Information Technology
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Cybersecurity Engineer – Managed XDR (mXDR)
2026-05-16
Full-time
Associate
United Arab Emirates
Technology
Information Technology
View Job Details
Related
Site Reliability Engineer – Wealth Management Systems (Prospero/Advent)
2026-05-20
Contract
Associate
United Arab Emirates
Technology
Engineering
View Job Details
Related
Senior AI Engineer - Chatbot & Agentic AI
2026-05-27
Full-time
Mid-Senior
Qatar
Technology
Engineering