LevelBlue reduces risk and builds lasting resilience so organizations can innovate and advance their mission with confidence. As the world’s most analyst-recognized and largest pure-play managed security services provider, LevelBlue elevates client outcomes that matter: stronger defense, faster response, and sustained business continuity. LevelBlue combines AI-powered security operations, advanced threat intelligence, and elite human expertise to provide the most comprehensive portfolio of strategic advisory, managed security, offensive security, and incident response services.ONLY POLAND BASED - Employment ContractThe Senior Threat Hunter is a key member of the OpsIntel team, responsible for leading proactive and continuous threat hunting activities to identify malicious or high-risk behavior across client environments. This role requires deep technical expertise in threat hunting, endpoint investigations, and adversary tactics, combined with the ability to communicate effectively with both technical teams and senior client stakeholders. In addition to executing advanced hunts and delivering high-quality reporting, the Senior Threat Hunter plays a critical role in bridging threat intelligence, detection engineering, and incident response to ensure threats are rapidly identified, contained, and remediated. Key responsibilities in this role include: Leading proactive and continuous threat hunting operations, including investigation, containment, reporting, and client engagement using internal platforms and methodologiesDeveloping and enhancing detection use cases, hunting strategies, and intelligence-driven approaches to improve overall hunting effectiveness and platform capabilityIntegrating and operationalizing threat intelligence, ensuring insights are actionable and accessible across security teamsCollaborating closely with incident response, malware analysis, and CTI teams during active breaches to support rapid remediation and adversary evictionEngaging directly with clients, including executive stakeholders, to communicate findings, articulate value, and provide clear, actionable recommendationsSupporting business development efforts by partnering with sales teams to convey the value and outcomes of threat hunting services In this role, the Threat Hunter is expected not only to execute advanced technical work, but also to influence detection strategy, strengthen cross-team collaboration, and contribute to the ongoing maturity and differentiation of the organization’s threat hunting capabilities.Specific focus for this role will include: Threat Hunting Perform Proactive and Continual Threat Hunts for LevelBlue clients. Conduct hunting, investigation, containment, reporting, and client engagement related to hunting activities utilizing Trustwave’s proprietary threat hunting platform. Contribute use-case development and detection strategies to further improve LevelBlue’s proprietary threat hunting platform. Incumbent must have a vision for “making intel actionable” for all LevelBlue security analysts. Adding proper intelligence feeds / sources, scripting extraction of intel from various potential sources. Bring a vision to the team to improve our approach and utilization of threat intel and drive that vision to reality. Threat Intelligence Partnerships Determine joint projects and publications that can be prepared surrounding new and emerging threats that our team discovers, be a point person discussing threats with potential partners. Building Hunting Business Support sales team to close major deals by clearly and concisely explaining the value and expected outcomes of a Trustwave threat hunt.Requirements: 3-5 years of Threat Hunting experience or DFIR related experienceMalware analysis experience is also a major advantage.Experience conducting endpoint-based threat hunting.In-depth knowledge of Windows system administration and good network hygiene.Knowledge/experience with Windows/Linux/OSX security and investigations.Knowledge of various threat actor groups and TTPs they are known to utilize. Experience developing endpoint-based rules to detect such TTPs.Knowledge and experience implementing MITRE ATT&CK framework into hunting and detection mechanisms.Skilled speaker and able to communicate comfortably with senior security executives.Skilled writer, able to communicate both our service and emerging threat activity through written communication. Education: A high school diploma or equivalent is required; a college or university degree is a plus. What We Offer: Contract of employmentSport card/ co-financing of vacationLife insuranceMedical insuranceLunch cardAnnual bonusEmployee assistance program (EAP)The employee pension scheme (PPE) This role is open to candidates legally authorized to work in Poland. At LevelBlue, we support flexible work and bring people together in person for key moments based on role, team, and business needs.LevelBlue is committed to a culture of respect, inclusion, and equal opportunity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other status protected under applicable law.To all agencies: Please do not contact LevelBlue outside of the Talent Acquisition team. LevelBlue’s policy is to only accept resumes from agencies through its approved agency process and with a valid agreement in place. Any resume submitted outside this process will be considered the property of LevelBlue, and no fee will be paid if a candidate is hired from such a submission. #LI-KD1