AOUSC - Threat Hunt Lead
Tasks
- Analyze endpoint network cloud identity SIEM EDR log telemetry
- Collaborate with detection engineering to remediate gaps
- Conduct analysis of threat actor behaviors malware campaigns phishing and infrastructure
- Coordinate and escalate findings to incident response teams
- Coordinate threat hunt activities in sprint cycles
- Develop and execute hypothesis driven threat hunts
- Develop and maintain threat hunting SOPs and playbooks
- Develop and refine threat models
- Develop threat hunt execution plans
- Develop threat hunt reports
- Drive continuous improvement for detection coverage telemetry enrichment and threat hunting maturity
- Identify indicators of compromise
- Lead proactive threat-hunting operations
- Operationalize threat intelligence for investigations
- Perform analysis using security platforms
- Produce executive level hunt sprint reports
- Provide mentorship and technical guidance to threat hunters
- Provide real time investigative support during incidents
- Support security awareness initiatives with threat briefings
- Support transition and knowledge transfer activities
Perks/Benefits
Skills/Tech-stack
Adversary tactics | Adversary tactics and techniques | Agile | Behavioral analytics | CrowdStrike | Data Querying | EDR | Enterprise Security | Jira | Log Analysis | Microsoft Sentinel | Powershell | Python | Qualys | SIEM | Scripting | ServiceNow | Splunk | Splunk Enterprise | Splunk Enterprise Security | Splunk SOAR | Tactics and Techniques | Threat Intelligence | Threat hunting | Threat modeling
Education
Bachelor of Engineering | Bachelor of Science | Bachelor of Science in Computer Science | Bachelor of Science in Information Technology
Roles
Analyst | Cyber Threat Analyst | Lead | Threat Analyst | Threat Hunt Lead
Regions
Countries
States
Related jobs
-
Senior Cyber Incident Analyst USD 120K-154KComputer Networking | Confluence | Cybersecurity | Encryption | Incident ResponseOn site work Arlington VA | Public Trust Clearance | Top Secret clearanceSenior-level Full TimeARLINGTON, VA, United States6h ago
-
AOUSC - Detection Engineering Lead USD 130K-180KAPT Behavior | Adversary Emulation | Agile | Analytics rules | Data QueryingHybrid work | Onsite in Washington DC | Public trust clearance requiredSenior-level Full TimeWashington, DC23h ago
-
AOUSC - Forensic and Malware Lead USD 107K-166KChain of Custody | Data carving | Digital forensics | Disk analysis | Dynamic analysisSenior-level Full TimeWashington, DC23h ago
-
AOUSC - Insider Threat Analyst Lead USD 101K-183KAgile Workflows | Alert Correlation | Audit Records | Behavior analytics | Behavioral analyticsHybrid work | Public Trust ClearanceSenior-level Full TimeWashington, DC23h ago
-
AOUSC - Blue Team Lead USD 135K-175KBlue Team | CSF 2.0 | Cyber Threat | Cyber Threat Intelligence | CybersecurityHybrid workSenior-level Full TimeWashington, DC23h ago
-
Cybersecurity Analyst USD 95K-166KData Visualization | Endpoint protection | Firewalls | Forensics | IDS/IPSHybrid work | Onsite 3 days per weekMid-level Full TimeWashington, DC, US1d ago
-
Cyber Forensics Analyst Lead USD 110K-179KAutopsy | Chain of Custody | CrowdStrike | Digital forensics | EDRSenior-level Full TimePortland, OR, United States1d ago
-
Cyber Threat Hunt Analyst USD 96K-158KATT&CK Navigator | Big Data | Data analytics | Economic analysis | Endpoint Security401k match | Collaborative work environment | Dental insurance | Educational reimbursement | Health insuranceSenior-level Full TimeFort Gordon, GA1d ago
-
Associate Cybersecurity Analyst - Incident Response USD 103K-141KAccess Control | Agile | Audit | Business Continuity | Cloud Computing401k matching | Bonding leave for new parents | Community service pay | Flexible-hybrid work | Nine company holidaysMid-level Full TimeArlington, TX, United States1d ago
-
Lead Database Administrator USD 165K-200KAWS | Backup and Recovery | Bash | Database Administration | Database performanceSenior-level Full TimeBasking Ridge, New Jersey1d ago
-
Cybersecurity Vulnerability Analyst USD 104K-166KApplication Testing | Automated vulnerability scanning | Bash | Burp Suite | CVSSMid-level Full TimeLinthicum, MD, United States1d ago
-
Signals Analyst USD 112K-179KBehavior Analysis | Cellular Networks | Data Analysis | Intelligence Analysis | PythonSenior-level Full TimeChantilly, VA, United States1d ago
-
Cyber Security Analyst III (ISSO) USD 115K-191KACAS | Active Directory | Amazon EKS | Apache Tomcat | Artifactory401k match | Dental insurance | Life insurance | Medical insurance | Paid HolidaysSenior-level Full TimeVirginia Beach, VA, United States1d ago
-
Cyber Security Analyst III (ISSO) USD 115K-191KACAS | Amazon EKS | Apache Tomcat | Apache Web | Apache Web Server401k match | Dental insurance | Health insurance | Life insurance | Paid HolidaysSenior-level Full TimeVirginia Beach, VA, United States1d ago
-
Network Security Analyst II – RSA Archer Specialist USD 81K-116KAPI Integration | Access Control | Assessment and Authorization | CMDB | Compliance Management401k matching | Flexible spending accounts | Long-term disability | Medical/Dental/Vision insurance | Paid time offMid-level Full TimeAustin, TX, United States1d ago
-
Risk and Integration Lead USD 165K-225KAssembly Language | Cryptography | Cyber Kill Chain | Cyber Operations | Cyber ThreatSenior-level Full TimeCharleston, SC1d ago
-
Identity & Access Management Analyst USD 90K-132KAccess Control | Access Management | Access requests | Access reviews | Active DirectoryEntry-level Full TimeATM-Dallas-Lincoln III, United States1d ago
-
Data Analyst - GEOINT Technical SME USD 103K-181KAnalytical modeling | ArcGIS | ArcView | Data Science | Data VisualizationSenior-level Full TimeUSA VA Springfield (Client Site), United …1d ago
-
Sr. Analyst, Cybersecurity USD 182K-229KAccess Control | Authentication | COBIT | Cloud Security | Compliance ManagementOnsite work 4 days per week | Paid time off | Training and developmentSenior-level Full Time8116 - Midtown Office, United States1d ago
-
Senior Threat Hunter - Boston USD 145K-192KAWS | Azure | Cobalt Strike | Cyber Threat | Cyber Threat IntelligenceOnsite work requirements | Paid time offSenior-level Full TimeBoston, United States1d ago
-
Cybersecurity M&A Lead USD 156K-260K800-171 | 800-53 | 800-82 | AI | Access ManagementChallenging work environment | Hybrid options | Professional development | Remote optionsSenior-level Full TimeRemote, United States R1d ago
-
Cyber Security Threat Analyst (Onsite Hybrid) USD 87K-120KCVE | CVSS | Case management | Credential theft | Cyber Kill ChainHybrid work | Onsite work | Professional developmentMid-level Full TimeCharlotte, NC, US R1d ago
-
Access Management | Anomaly Detection | Authentication | Dashboarding | Data Quality401k | Career development | Dental insurance | Holidays | Life insuranceMid-level Full TimeWashington, D.C., District of Columbia, United … R1d ago
-
Global Sr GRC Analyst USD 66K-82KCOBIT | Compliance | Continuous Monitoring | Cybersecurity | FAIROnsite work 5 days a weekSenior-level Full TimeKing Of Prussia, PA, US, 194061d ago
-
CVSS | Common Vulnerabilities and Exposures | Common vulnerabilities | Detection and Response | Endpoint Detection and Response401k matching | Conus travel | Dental insurance | Employee stock ownership plan | Flexible spending accountMid-level Full TimeConcord, CA, USA1d ago