Senior Cyber Security Defender (Threat Hunting)

North Atlantic Treaty Organization - NATO | Staff |
Closing: 18 Mar 2026 11 days remaining
Location: Brussels; Mons
Apply on Organization Website

Overview

Provide technical and expert support for the 24/7 Cyber Security Incident Response Team and conduct threat hunting campaigns.

Tasks Summary
  • Provide technical and expert support for the 24/7 Cyber Security Incident Response Team’s processes, during normal working hours and on-call duties, including weekends and holidays;
  • Support Cyber Security Incident Response/Threat Hunting Team covering one or multiple physical locations, including NATO Alliance Operations and Missions;
  • Develop tools, scripting, automation and integrations to automate activities as much as possible, mostly using Python and PowerShell;
  • Conduct threat hunting campaigns and maintain threat hunting analysis tools and environments on premises or in the cloud.
Experience Requirements
  • 3 years post-related experience with a Bachelor’s degree in a related discipline;
  • Exceptionally, at least 10 years extensive and progressive expertise in duties related to the function of the post in lieu of a university degree;
  • Extensive knowledge of threat hunting techniques and technologies;
  • Excellent ability to recognise when an IT network/system has been attacked, be able to take immediate action to limit damage and to escalate the event to higher authority;
  • Practical experience with cyber security in cloud-based environments such as Azure and AWS;
  • Proficiency in assessing security vulnerabilities of operation systems and software;
  • Practical experience and knowledge of Security Information & Event Management (SIEM);
  • Proven experience with Splunk or Microsoft Sentinel;
  • Good knowledge of Advanced Persistent Threats (APT) Tactics Techniques and Procedures (TTPs);
  • Practical experience in the analysis of digital forensic artefacts in the context of cyber security;
  • Good knowledge of the principles of computer and communications security, networking, and vulnerabilities of modern operating systems and applications;
  • Good understanding of the MITRE ATT&CK framework and its applicability in Cyber;
  • Good practical experience in Windows, Linux and VMware system administration;
  • Good knowledge of cyber security incident handling;
  • Practical experience in scripting (Python, PowerShell);
  • Excellent communication and analytical skills;
  • Experience in leading small teams, preferably in international environment.
Qualification Requirements

• Bachelor’s degree at a nationally recognised/certified University in a related discipline

Other Details

Languages Required: • Fluency in English, both written and spoken.

Languages Preferred:

Contract Duration: 5 year contract

Work Modality:

Remuneration: • 8,273.12 Euro (EUR) Monthly

Apply on Organization Website

Similar opportunities

United Nations Interim Security Force for Abyei - UNISFA
UNV LABORATORY TECHNICIAN
United Nations Interim Security Force for Abyei - UNISFA
Khartoum, Sudan
Volunteer opportunity closes Mar 18, 2026
World Food Programme - WFP
Programme Policy Officer
World Food Programme - WFP
Dar es Salaam, Tanzania
Volunteer opportunity closes Mar 18, 2026
Danish Refugee Council - DRC
Localisation & Partnerships Specialist
Danish Refugee Council - DRC
Gaza, Palestine; Ramallah, Palestine
Staff opportunity closes Mar 18, 2026
UN High Commissioner for Refugees - UNHCR
Associate Registration and Identity Management Officer
UN High Commissioner for Refugees - UNHCR
Yumbe, Uganda; Kampala, Uganda
Volunteer opportunity closes Mar 18, 2026
UN Development Programme - UNDP
Humanitarian Development Peace - Nexus Specialist
UN Development Programme - UNDP
Addis Ababa, Ethiopia
Volunteer opportunity closes Mar 18, 2026
United Nations Capital Development Fund - UNCDF
Regional Operations and Reporting Specialist
United Nations Capital Development Fund - UNCDF
Nairobi, Kenya
Volunteer opportunity closes Mar 18, 2026
INGO.WORK: