• Conduct proactive threat hunts and adversary emulation to identify adversary activity, cyber risks and anomalies. • Identify potential vulnerability exploitation at network, endpoint, application and cloud levels. • Capture samples to perform malware analysis and fundamental reverse engineering. • Analyze scripts and code artifacts in languages such as Powershell, Python, VBScript, C++, HTML, XML, and others necessary for threat identification and response. • Evaluate, analyze and synthesize large quantities of data to uncover anomalous activity capable of introducing risk to North environments. • Work closely with other cybersecurity teams and operational technology owners to investigate anomalous findings, contribute to detection logic improvements and verify security control implementations. • Capture hunt byproducts indicative of poor cyber hygiene practices, company policy violation or misuse. • Define, track, and report key metrics that assess hunt effectiveness, analytic performance, and program maturity. • Design and write scripts to help expedite repetitive tasks or complex detection logic. • Support incident response cases, as needed. • Analyze telemetry across network, endpoint, cloud, and other log sources to differentiate between benign and malicious behavior.