Cyber Threat Hunter

Switzerland - Zürich
- Information Technology (IT)
- Group Functions

**Job Reference #**
- 323762BR

**City**
- Zürich

**Job Type**
- Full Time

**Your role**
- Do you have an investigator's mindset, and intuitively know how to uncover malicious activity? Do you have a deep understanding of computer operating systems and the realities of enterprise IT estates? Do you like data? This role is responsible for analyzing and correlating large data sets to uncover novel threats and attach techniques that may be present within UBS’s environment.

We are looking for a Threat Hunter who:

- can query, process and manipulate data in a variety of platforms and formats
- very well versed with incident response in Azure
- has incident response experience and understands how EDR tools work behind the user interface
- can interpret structured and unstructured intelligence to determine what is critical for meeting your detection objectives
- has detailed contemporary knowledge of attacker techniques and understands how to identify them in the real world
- has initiative and creative thinking to achieve solutions to complex problems
- able to assist incident response teams with major incidents as required

**Your team**
- You will be working for Threat Hunting team, which sits within the Cyber Threat Management function of UBS. The team is charged with hunting for unknown and undetected threats, and responding to incidents when they are identified.
Threat hunting analysts are located in our major centers of Zurich, New Jersey, Nashville, Singapore and Raleigh, but examine data from our offices all over the world (with some exceptions).

We are refining and building cutting edge capabilities to deliver a world-class Threat Hunting service. You will be based in one of our Zurich office.

**Your expertise**
- a bachelor's degree, preferably within an Information Security related discipline, or equivalent experience
- 5+ years’ experience with Threat Hunting or Incident Response, which enables you to recognize malicious activity within a sea of noise
- deep knowledge of digital forensics, computer operating systems and enterprise network infrastructure
- strong knowledge of malware and exploit desired
- experience with offensive security tools and attack techniques
- competence with one or more programming/query languages - experience with Python, PowerShell and SQL is preferred
- experience working with large data set and tools/technologies such as Spark, PySpark, Hadoop, Cloudera, Databricks desired
- a strong understanding of how to make sense of security and forensic data
- experience with incident response within Cloud environments, preferably Azure
- the experience and judgement of an analyst that can clearly explain concepts to a less technical audience, and make well-reasoned arguments for your security recommendations
- must be a team player and ability to mentor junior colleagues

**About us**
- UBS is the world’s largest and the only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors.

We have a presence in all major financial centers in more than 50 countries.

**How we hire**

**Join us**
- At UBS, we know that it's our people, with their diverse skills, experiences and backgrounds, who drive our ongoing success. We’re dedicated to our craft and passionate about putting our people first, with new challenges, a supportive team, opportunities to grow and flexible working options when possible. Our inclusive culture brings out the best in our employees, wherever they are on their career journey. We also recognize that great work is never done alone. That’s why collaboration is at the heart of everything we do. Because together, we’re more than ourselves.

We’re committed to disability inclusion and if you need reasonable accommodation/adjustments throughout our recruitment process, you can always contact us.

**Contact Details**
- UBS Business Solutions SA
UBS Recruiting

**Disclaimer / Policy statements**
- UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.