Senior Cyber Intelligence & Threat Hunting Specialist

About the position The Senior Cyber Intelligence & Threat Hunting Specialist leads the integration of enterprise threat intelligence into proactive detection and risk reduction strategies. This role drives intelligence-led security operations by translating adversary tactics, techniques, and procedures into measurable detection enhancements and control improvements across the Wintrust environment. Operating with a high degree of autonomy, the specialist strengthens the organization’s ability to identify emerging threats, reduce detection gaps, and provide executive-ready intelligence that informs strategic security decisions. Responsibilities • Develop and test analytical hypotheses to anticipate adversary behavior, emerging TTPs, and threat trends targeting financial institutions. • Conduct structed TTP analysis using frameworks such as MITRE ATT&CK to map adversary tradecraft to Wintrust’s environment and control coverage. • Partner with Security Engineering, SOC, Fraud, Insider Threat, and Physical Security to operationalize intelligence into detection logic, monitoring enhancements, and mitigation strategies. • Develop and maintain CrowdStrike Overwatch-aligned coverage, ensuring known threat actor TTPs are actively monitored. • Build and manage internal threat hunting playbooks, translating intelligence findings into repeatable hunt packages and detection logic. • Define and manage an intelligence communication cadence, including who receives which products, in what format, and how often. • Identify, evaluate, and onboard intelligence sources across open source and commercial feeds relevant to financial sector threats. • Maintain and update the collection inventory, ensuring sources remain current, accurate, and aligned to organizational intelligence requirements. Requirements • 7+ years in information security, with 5+ years specializing in Threat Intelligence or Threat Hunting. • Demonstrated experience translating adversary TTPs into operational detection logic. • Proven ability to conduct hypothesis-driven threat hunting and telemetry correlation across endpoint, network, identity, and cloud environments. • Experience integrating external intelligence into enterprise risk assessments and control enhancements. • Strong understanding of financial-sector threat actors, fraud typologies, and insider risk indicators targeting banking institutions. • Experience producing executive-level threat briefings that clearly articulate business impact, exposure, and recommended actions. • Demonstrated ability to operate independently, exercise sound judgment, and influence cross-functional stakeholders in a regulated environment. • Bachelor’s degree or equivalent Benefits • Medical Insurance • Dental • Vision • Life insurance • Accidental death and dismemberment • Short-term and long-term Disability Insurance • Parental Leave • Employee Assistance Program (EAP) • Traditional and Roth 401(k) with company match • Flexible Spending Account (FSA) • Employee Stock Purchase Plan at 5% discount • Critical Illness Insurance • Accident Insurance • Transportation and Commuting Benefits • Banking Benefits • Pet Insurance