Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Cisco

Threat Hunting Analyst

Cisco

Threat Hunting Analyst in CSIRT investigating cybersecurity incidents to protect global infrastructure. Collaborating with cross-functional teams to improve security operations and incident response.

Posted 5/25/2026full-timeMexico City • 🇲🇽 MexicoMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
AWSAzureCloudCyber SecurityPythonSplunkSQL

About the role

Key responsibilities & impact
  • Investigate security alerts and analyze telemetry across endpoint, network, and cloud platforms to identify and mitigate malicious activity
  • Coordinate with cross-functional teams to ensure rapid incident resolution and minimize business impact
  • Develop and refine standard operating procedures and playbooks to improve the efficiency of our detection and response capabilities
  • Participate in intelligence-driven threat hunting to proactively identify emerging attacker tactics
  • Document investigations, analysis, decisions, and actions clearly and thoroughly
  • Support operational improvement initiatives including detection tuning, workflow improvements, automation opportunities, and process documentation
  • Collaborate with teammates globally to improve investigative consistency, response efficiency, and customer experience
  • Communicate efficiently with technical and non-technical audiences during investigations and incident response activities

Requirements

What you’ll need
  • Bachelor’s degree or equivalent experience in Computer Science, Cybersecurity, or a related technical field
  • 3+ years of professional experience in cybersecurity operations, incident response, or threat detection
  • Demonstrated experience investigating security alerts using telemetry from endpoints, networks, or cloud platforms
  • Experience leading security incidents within an enterprise-level case management or ticketing system
  • Technical proficiency with SIEM, EDR, or network security monitoring tools in a production environment
  • Experience with security monitoring and analysis platforms such as Splunk or Microsoft Defender
  • Demonstrated understanding of adversary tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK
  • Proficiency in scripting or automation using Python, PowerShell, or SQL to improve operational workflows
  • Knowledge of malware analysis, identity-based attack vectors, insider threats, and endpoint investigation techniques
  • Experience with cloud environments including Amazon Web Services, Microsoft Azure, and Google Cloud.

Benefits

Comp & perks
  • Diverse perspectives
  • Continuous learning
  • Culture of accountability

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cybersecurity operationsincident responsethreat detectionsecurity alerts investigationtelemetry analysisscriptingautomationmalware analysisendpoint investigation techniquesadversary tactics
Soft Skills
communicationcollaborationproblem-solvingdocumentationcoordinationefficiency improvementcustomer experience enhancementcross-functional teamworkanalytical thinkingincident resolution