Senior Engineer, Threat Hunter

Journey with us! Combine your career goals and sense of adventure by joining our incredible team of employees at Royal Caribbean Group. We are proud to offer a competitive compensation and benefits package, and excellent career development opportunities, each offering unique ways to explore the world.

We are proud to be the vacation-industry leader with global brands — including Royal Caribbean International, Celebrity Cruises and Silversea Cruises — the most innovative fleet and private destinations, and the best people. Together, we are dedicated to turning the vacation of a lifetime into a lifetime of vacations for our guests.

Royal Caribbean Group’s IT - Global Information Security Team has an exciting career opportunity for a full time Senior Engineer, Threat Hunter reporting to the Senior Director, Cybersecurity Business Enablement Engineering.

Position Summary

The Senior Engineer, Threat Hunter is responsible for proactively detecting cyber threats not previously identified by existing tools and teams and improving detection pipelines to ensure they are caught in the future.

Utilizing deep knowledge of attacker tactics, techniques, and procedures (TTPs), they will identify hidden risks, investigate anomalies, and develop strategies to mitigate emerging threats. The ideal candidate is an experienced cybersecurity professional with a strong background in threat intelligence, incident response, and forensic analysis, passionate about staying ahead of evolving cyber adversaries.

Essential Duties and Responsibilities

• Proactively hunt for unknown threats by analyzing large-scale datasets such as logs, endpoint, and network telemetry.
• Formulate and test hypotheses to detect malicious behaviors, lateral movement, and stealthy persistence.
• Develop custom detection logic to identify novel attack techniques.
• Improve data sources for detection, including refining existing data and identifying new data sources for hunting
• Participate in purple team activities by creating detection techniques
• Apply frameworks like MITRE ATT&CK to guide hunting strategies and map adversary behaviors.
• Document methodologies and contribute to continuous improvement of threat hunting processes. 
• Collaborate with incident response and SOC teams to validate findings, improve detection capabilities, and mentor analysts to better defend our systems and data.

Qualifications, Knowledge and Skills

• 5+ years of experience in cybersecurity, with at least 2 years in a threat hunting or advanced detection role.
• Strong proficiency in analyzing large datasets (e.g., SIEM, EDR, network telemetry) to identify anomalies and malicious behavior.
• Expert knowledge of enterprise data systems, including networking protocols, endpoint security, and data security
• Deep understanding of attacker TTPs and familiarity with MITRE ATT&CK and other threat behavior models.
• Hands-on experience with tools like Splunk, ELK, Sentinel, Velociraptor, Osquery, or similar.
• Proficient in scripting or query languages such as Python, PowerShell, SQL, or KQL for custom threat detection.
• Strong grasp of network protocols, endpoint behavior, and threat detection methodologies.
• Ability to clearly document findings and communicate technical concepts to both technical and non-technical audiences.
• Bachelor’s degree in Computer Science, Cybersecurity, or related field, or equivalent work experience preferred

We know there's a lot to consider. As you go through the application process, our recruiters will be glad to provide guidance, and more relevant details to answer any additional questions. Thank you again for your interest in Royal Caribbean Group. We'll hope to see you onboard soon!

It is the policy of the Company to ensure equal employment and promotion opportunity to qualified candidates without discrimination or harassment on the basis of race, color, religion, sex, age, national origin, disability, sexual orientation, sexuality, gender identity or expression, marital status, or any other characteristic protected by law. Royal Caribbean Group and each of its subsidiaries prohibit and will not tolerate discrimination or harassment.

#LI-AS2