Today
Top Secret
Mid Level Career (5+ yrs experience)
$165,000 - $210,000
No Traveling
IT - Security
Remote/Hybrid•Reston, VA•Alexandria, VA•Chantilly, VA•Washington Dc Brm, DC
Position Summary: We are seeking a proactive Cyber Threat Hunter to join our Cybersecurity team. As a Cyber Threat Hunter, you will play a critical role in protecting our clients' infrastructure and data by proactively hunting for and identifying potential threats and vulnerabilities. You will work closely with incident responders, security analysts, and other stakeholders to develop and implement threat hunting strategies and techniques.
Required Skills:
Experience in a Tier 3 SOC environment, with expertise in advanced threat detection, incident response, and proactive threat hunting.
Proactively hunt for and identify potential threats and vulnerabilities within our clients' environments
Perform in-depth analysis of security logs, network traffic, and other data sources to identify indicators of compromise and suspicious activities
Create and maintain custom signatures, rules, and alerts to enhance detection and response capabilities
Develop and implement threat hunting methodologies and techniques to effectively detect and mitigate advanced cyber threats
Collaborate with incident responders, security analysts, and other stakeholders to investigate and respond to security incidents
Stay up to date with the latest threat intelligence and security trends to continuously enhance threat hunting capabilities
Provide guidance and mentorship to junior members of the team
Desired Skills:
Advanced Threat Hunting Expertise: Proven experience conducting proactive threat hunts in Tier 3 SOC environments, leveraging tools such as Splunk, Elastic Stack, or XSIAM to detect and investigate advanced persistent threats (APTs), insider threats, and zero-day exploits
Technical Proficiency in Security Tooling: Hands-on experience with EDR solutions (e.g., CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint), vulnerability management tools (e.g., Nessus, Qualys, Rapid7 InsightVM), and SIEM platforms, with the ability to create custom rules, detections, and signatures to enhance visibility and response
Analytical and Collaborative Mindset: Strong ability to analyze complex attack patterns, correlate threat intelligence, and collaborate with incident response, forensics, and SOC teams to improve detection capabilities and strengthen overall security posture
Qualifications:
Experience with Vulnerability Assessments: Nessus, Qualys, Rapid7 InsightVM, and OpenVAS, etc.
Experience with Endpoint Security (EDR): CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint, Carbon Black, etc.
Experience with SIEM: Splunk, XSIAM, Elastic Stack, IBM QRadar, LogRhythm, etc.
Experience with threat hunting tools and techniques
Experience conducting incident response and investigations
Knowledge of common cyber threats and attack vectors
Bachelor's degree in Computer Science or a related technical field
Relevant certifications such as CISSP, CISM, or GIAC certifications are preferred
Required Skills:
Experience in a Tier 3 SOC environment, with expertise in advanced threat detection, incident response, and proactive threat hunting.
Proactively hunt for and identify potential threats and vulnerabilities within our clients' environments
Perform in-depth analysis of security logs, network traffic, and other data sources to identify indicators of compromise and suspicious activities
Create and maintain custom signatures, rules, and alerts to enhance detection and response capabilities
Develop and implement threat hunting methodologies and techniques to effectively detect and mitigate advanced cyber threats
Collaborate with incident responders, security analysts, and other stakeholders to investigate and respond to security incidents
Stay up to date with the latest threat intelligence and security trends to continuously enhance threat hunting capabilities
Provide guidance and mentorship to junior members of the team
Desired Skills:
Advanced Threat Hunting Expertise: Proven experience conducting proactive threat hunts in Tier 3 SOC environments, leveraging tools such as Splunk, Elastic Stack, or XSIAM to detect and investigate advanced persistent threats (APTs), insider threats, and zero-day exploits
Technical Proficiency in Security Tooling: Hands-on experience with EDR solutions (e.g., CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint), vulnerability management tools (e.g., Nessus, Qualys, Rapid7 InsightVM), and SIEM platforms, with the ability to create custom rules, detections, and signatures to enhance visibility and response
Analytical and Collaborative Mindset: Strong ability to analyze complex attack patterns, correlate threat intelligence, and collaborate with incident response, forensics, and SOC teams to improve detection capabilities and strengthen overall security posture
Qualifications:
Experience with Vulnerability Assessments: Nessus, Qualys, Rapid7 InsightVM, and OpenVAS, etc.
Experience with Endpoint Security (EDR): CrowdStrike Falcon, SentinelOne, Microsoft Defender for Endpoint, Carbon Black, etc.
Experience with SIEM: Splunk, XSIAM, Elastic Stack, IBM QRadar, LogRhythm, etc.
Experience with threat hunting tools and techniques
Experience conducting incident response and investigations
Knowledge of common cyber threats and attack vectors
Bachelor's degree in Computer Science or a related technical field
Relevant certifications such as CISSP, CISM, or GIAC certifications are preferred
group id: 10117305
N
