Threat Hunter
Tasks
- Analyze telemetry and perform forensic investigations
- Automate analytic processes and evaluate emergent hunting tools
- Build behavioral detection logic and anomaly models
- Create technical reports and executive intelligence briefs
- Deliver actionable detections and validated indicators
- Develop detection hypotheses and analytic campaigns
- Develop hunt playbooks and validation procedures
- Identify telemetry gaps and improve data enrichment pipelines
- Integrate hunt outputs into SOC and incident response workflows
- Lead proactive threat-hunting operations
- Map detections to MITRE ATT&CK TTPs
- Tune SIEM and EDR detection rules and expand telemetry coverage
- Uncover lateral movement persistence credential misuse C2
Perks/Benefits
- N/A
Skills/Tech-stack
Adversary Emulation | Anomaly Detection | Automation | Behavioral analytics | Detection engineering | Detection validation | Disk analysis | EDR | Incident Response | Log Forensics | MITRE ATT and CK | Machine Learning | Memory Analysis | Network Forensics | SIEM | Telemetry Analysis | Threat Intelligence
Education
Bachelor of Engineering | Bachelor of Science | Master of Arts | Master of Science | PhD
Roles
Analyst | Cyber Threat Analyst | Threat Analyst | Threat Hunter
Related jobs
-
Cybersecurity Principles | Cybersecurity frameworks | Intelligence Analysis | Risk Management | Security recommendationsMentorship | Onsite 5 days per week | Professional developmentSenior-level Full TimeBaltimore, Maryland, United States9h ago
-
Assoc. Cybersecurity Analyst USD 70K-80K800-53 | CIS Critical Security Controls | Compliance Management | Critical Security Controls | CybersecurityMid-level Full TimeNashville, TN, United States10h ago
-
Engineering Analyst, Trust and Safety Account Security USD 132K-189KAutomation | Cause analysis | Cybersecurity | Data Analysis | Incident ResponseRotating on call coverage | Weekend and holiday coverageMid-level Full TimeKirkland, WA, USA11h ago
-
Tier III Analyst/Threat Hunter USD 110K-166KCause analysis | Detection and Response | Detection engineering | Digital forensics | Endpoint Detection and ResponseComprehensive health coverage | Federal holidays off | Flexible PTO | Professional development support | Remote workSenior-level Full TimeWashington, D.C. Metro - hybrid/remote R21h ago
-
Senior Manager, Threat Intel Analyst USD 107K-184KActor Profiling | Analytic techniques | Cyber Kill Chain | Cyber Threat | Cyber threat analysisSenior-level Full TimeAustin (Oakhill, Office), United States22h ago
-
Principal IT Risk Management Analyst USD 119K-178KArtificial Intelligence | Business Continuity | Business Continuity Planning | CIS Controls | Cloud Platforms401k retirement plan | Dental insurance | Disability insurance | Employee stock purchase plan | Health insuranceSenior-level Full TimeRemote, United States R22h ago
-
Cyber Security Specialist USD 120K-140KApplication Firewall | Audit Support | Burp Suite | Cloud Security | Cloudflare401k match | Bereavement leave | Continuous learning | Dental insurance | Employee assistance programMid-level Full TimeMINNEAPOLIS, MN, United States1d ago
-
Cybersecurity Analyst (Intrusion Analyst) USD 100K-200KC# | C++ | Computer Network Defense | Computer network | Incident Response401k company match | Dental insurance | Employer Paid Long-term Disability | Employer Paid Short-term Disability | Employer-paid life insuranceSenior-level Full TimeSan Antonio, TX, US1d ago
-
Security Operations Analyst USD 70K-106KContinuous Monitoring | Controls evaluation | Detection engineering | Incident Response | Log AnalysisEntry-level Full TimeWashington DC1d ago
-
Security Administrator USD 90K-100KAccess Management | Atera | Barracuda | BeyondTrust | CyberArk401k match | Amazing Office Culture | Dental insurance | Free meals | HSA savings accountMid-level Full TimeCosta Mesa, CA, 92626, US1d ago
-
IT Cybersecurity Analyst USD 75K-95KCause analysis | Cybersecurity | Endpoint protection | Incident Response | Information security401k matching | Dental insurance | Life insurance | Long-term disability | Medical insuranceMid-level Full TimeDallas, Texas, United States1d ago
-
Alerting | Automation | Detection engineering | Incident Response | Log Analysis100% onsite | Public trust clearance requiredSenior-level ContractWashington, United States1d ago
-
Cyber Data Scientist USD 132K-219KAWS Elastic MapReduce | Amazon SageMaker | Amazon Web Services | Artificial Intelligence | Assessment and Authorization401k match | Dental insurance | Disability insurance | Flexible spending account | Health savings accountSenior-level Full TimeChantilly, US-VA, US1d ago
-
AWS | AWS CloudTrail | AWS GuardDuty | Activity logs | Artifact analysisActive TS SCI clearance support | Onsite as required | Remote workMid-level Full TimeArlington, VA, USA, 222031d ago
-
AWS CloudTrail | AWS GuardDuty | AWS IAM | Activity logs | Azure Activity LogsOnsite as required | Remote work | TS SCI clearance support | Veteran-owned companySenior-level Full TimeArlington, VA, USA, 222031d ago
-
Access Control | Active Directory | Anomaly Detection | Anti-virus | Business Continuity401k program | Employee assistance program | Flexible spending accounts | Health dental prescription vision benefits | Hotel car and cruise discountsSenior-level Full TimeFort Worth, TX, US1d ago
-
Network Based Systems Analyst II USD 100K-126KAnomaly Detection | Cyber Defense | Cyber Defense Monitoring | Data collection | Detection SystemsActive clearance support | Referral bonusMid-level Full TimeArlington, VA1d ago
-
Computer Network Defense (CND) Analyst 3 (CCAs Accepted) USD 110K-155KAMOD | Artificial Intelligence | Cybersecurity | Defensive Signatures | Event CorrelationDental insurance | Employee referral bonus | Flexible location | HSA | Health insuranceMid-level Full TimeBluffdale, UT1d ago
-
IT Security Analyst, Tier III USD 112K-155KCapture analysis | Cybersecurity | DNS analysis | Data correlation | Disk image analysisSenior-level Full TimeWilmington, DE, United States1d ago
-
Cyber Data Analyst USD 86K-138KAnomaly Detection | Automation | Dashboard Development | Data Analysis | Data CleansingMid-level Full TimeArlington, VA, United States1d ago
-
Threat Analyst (I&W) with Splunk USD 104K-166KAdvanced persistent threat | Analyst1 | Cloud Security | Cyber Threat | Cyber threat modelingOn-site work | Security clearance support | Travel opportunitiesSenior-level Full TimeArlington, VA, United States1d ago
-
Cybersecurity Metrics and Reporting Lead USD 105K-161KAccess Management | Data Governance | Data Modeling | Data integration | EDRDental insurance | Disability insurance | Employee assistance program | Flexible spending account | Flexible vacation and sick leaveSenior-level Full TimeTEX01 - Houston, Texas (TEX01), United …1d ago
-
ACAS | Assessment and Authorization | Audit Reduction | Configuration Management | Continuous MonitoringMid-level Full TimeUSA - Berkeley, MO, United States1d ago
-
Cybersecurity Metrics and Reporting Lead USD 105K-161KAccess Management | Cybersecurity metrics | Dashboarding | Data Modeling | Data QualityDental insurance | Employee assistance program | Flexible paid vacation and sick leave | Flexible spending account | Generous time offSenior-level Full TimeTEX01 - Houston, Texas (TEX01), United …1d ago
-
GPS - Incident Response Analyst - Associate USD 60K-124K800-171 | CMMC | Chain of Custody | Cloud Security | Cloud security conceptsFlexible vacation policy | Hybrid work model | Paid Holidays | Paid time offNone Full TimeAtlanta, GA, US, 30308 R1d ago