Cyber Threat Hunter (TS/SCI) - Hampton, VA

Job Description

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans , Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers . If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Unless specifically stated otherwise, this role is "On-Site"

Cyber Threat Hunter
Hampton, VA, US
Minimum Clearance Required to Start: TS/SCI
Percentage of Travel Required: Up to 10% (Local)
The proposed salary range for this position is: $75,200-$158,100

The Opportunity:
Seeking a highly motivated Cyber Threat Hunter that will join the Cyber Security Operations team supporting the AF DCGS program located onsite at Langley AFB, VA. The ideal candidate will possess a strong understanding of cyber threat intelligence, threat hunting methodologies, Windows and Linux operating systems, networking concepts, and enterprise cybersecurity operations. The candidate should demonstrate hands-on experience utilizing SIEM platforms, threat intelligence tools, and investigative methodologies to identify, analyze, and respond to advanced cyber threats targeting enterprise systems and mission networks. In addition, the candidate must possess strong analytical and communication skills with the ability to independently investigate complex security events, develop actionable intelligence products, and collaborate across multiple operational and technical teams in support of 24/7 cyber defense operations.

Responsibilities:
• Conduct advanced threat hunting, analysis, and investigations across enterprise environments to identify indicators of compromise, malicious activity, and emerging threats targeting the OA DCGS weapon system.
• Utilize ELK/Elastic Stack and other cyber security tools to perform threat analysis, event correlation, log analysis, and proactive detection development.
• Research, analyze, and maintain awareness of current cyber threats, adversary tactics, techniques, and procedures (TTPs), vulnerabilities, and malware trends affecting enterprise and mission systems.
• Design, develop, implement, and maintain threat detection logic, cybersecurity Standard Operating Procedures (SOPs), threat hunting methodologies, and operational playbooks.
• Investigate network, system, and information security incidents to determine the extent of compromise and provide actionable recommendations for remediation and containment.
• Perform analysis and correlation of logs and telemetry from multiple data sources to identify anomalous or malicious activity.
• Develop and maintain security architecture, vulnerability, and risk assessment documentation while providing written and verbal analysis to leadership and stakeholders.
• Support vulnerability management and remediation efforts by identifying weaknesses, validating mitigations, and developing plans of action and milestones (POA&Ms).
• Configure, validate, and test secure systems and security technologies to identify weaknesses and ensure compliance with mandated security standards.
• Collaborate with internal teams, external mission partners, and stakeholders to support enterprise cyber defense operations and incident response activities.
• Support information assurance activities to ensure the confidentiality, integrity, and availability of enterprise systems and data.
• Provide support for security awareness initiatives, policy development, and compliance with applicable government and industry security standards.

Qualifications:

Required:
• Active TS/SCI security clearance.
• Bachelor's degree in IT Technology, Computer Science, or equivalent experience in lieu of a degree
• Minimum 5 years of related cyber threat hunting experience
• DOD 8140 (8570) IAT Level II (Security+ or equivalent).
• Strong understanding of cyber threat intelligence, threat hunting, and incident response methodologies
• Experience utilizing SIEM platforms and cybersecurity tools for detection, analysis, and investigations.
• Knowledge of Windows and Linux operating systems, networking concepts, and enterprise security architectures.
• Familiarity with vulnerability management, risk assessment, and remediation processes.
• Strong analytical, investigative, and problem-solving skills.
• Knowledge of security best practices and standards including NIST, RMF, ISO, and SOC operations.
• Effective written and verbal communication skills for technical reporting, documentation, and collaboration.
• Willing and able to work in a shift-based environment

Pay Range :
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
The proposed salary range for this position is:
$75,200-$158,100