Cyber Threat Hunter
$94.1k - $150kASM Research, An Accenture Federal Services Company
Position Overview The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network, endpoint, and log data to identify malicious activity that may evade conventional security controls. This role establishes normal traffic and data-flow baselines, detects anomalies, develops threat hypotheses, and investigates adversary tactics, techniques, and procedures to strengthen cyber defense and incident response operations. This role directly supports a proactive SOC model by contributing to detection engineering, monitoring enhancements, automation development and continuous gap analysis to identify and mitigate emerging threats before they materialize. Key Responsibilities Conduct proactive threat hunting across networks, endpoints, and security datasets to identify, isolate, and help eradicate advanced threats before they impact operations. Analyze logs from multiple sources, including packet captures, correlation engines, parsed security data, and endpoint telemetry, to detect suspicious behavior and validate threat activity. Establish and maintain baseline patterns for normal traffic, system activity, and data flows to improve anomaly detection and investigative accuracy. Collaborate closely with SOC analysts and detection engineers to recommend new alerts, analytics, and monitoring logic based on threat hunting findings, emerging trends, and identified visibility gaps. Develop automation scripts and workflows (using SOAR platforms, Python, PowerShell, or similar tools) to streamline threat hunting activities, automate repetitive analytical tasks, and reduce detection and response time. Research and track adversary tactics, techniques, and procedures (TTPs), developing technical hypotheses and investigative leads based on threat intelligence and observed behaviors. Support incident response activities by creating incident documentation, follow-up actions, reporting criteria, and recommendations that improve overall response maturity and operational resilience. Examine and characterize malware and cyber threats, including viruses, worms, bots, rootkits, and Trojan horses, to determine threat nature, scope, and potential impact. Apply reverse engineering and binary analysis techniques using tools such as Ghidra and IDA Pro to support vulnerability research and understand malicious code behavior. Required Qualifications Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field, or equivalent relevant experience. 4 years of experience in cybersecurity or a closely related technical security role. Demonstrated ability to perform system administrator-level analysis across multiple platforms and operating systems in support of cyber investigations. Strong analytical and problem-solving skills with the ability to identify, track, and assess adversary TTPs and suspicious activity. Knowledge of intrusion detection methodologies, evidence preservation practices, and cyber defense and information security policies, procedures, and regulations. Ability to support work in a U.S.-only staffing environment and satisfy any client-required background investigation or security requirements. Preferred Qualifications Relevant cybersecurity certifications such as GCDA, GNFA, CompTIA PenTest+ (Removed CISSP), CISM, or CompTIA CySA+. Experience with reverse engineering, malware analysis, vulnerability research, and threat analysis in enterprise or government environments. Familiarity with U.S. Army Corps of Engineers (USACE) IT policies and operational security requirements. Experience preparing technical reports, incident summaries, and threat findings for stakeholders and operational leadership. Job Specific Skills Threat hunting and anomaly detection. Log correlation and security event analysis. Packet capture analysis and data parsing. Malware analysis, reverse engineering, and binary analysis. Threat intelligence analysis and TTP identification. Incident response documentation and reporting. Detection engineering collaboration and monitoring enhancement support. Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. $94,100 - $150,000 Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment. #J-18808-Ljbffr
- ...the tools below: - ProofPoint Targeted Attack Protection, Cloud Threat Response, Protection Server, ZenGuide - CrowdStrike Falcon EDR Experience... ...- Syslog-NG Preferred Certifications: CompTia Security + ISC2 Certified in Cyber security Certified Ethical Hacker Microsoft SC-200...CyberWork at officeLocal area
$105.79k - $141.05k
...meaningful impact, and help shape the future of AI‑ready connectivity, join us today. The Role The Manager of Information Security—Cyber Threat Exposure Management plays a critical role in solving complex challenges and building the infrastructure that powers what’s next...CyberFull timeTemporary workRemote work$66.9k - $82.1k
...strategies with infrastructure and application teams to contain threats while preserving evidence and minimizing operational disruption.... ...tools and service management platforms integrated with SOC and cyber defense functions. Certifications such as ITIL Foundation plus...CyberContract workWork experience placementWork at office- ...password, access control, and backup practices. Monitor for security threats, suspicious activity, unauthorized access, and system... ...policies. Coordinate response to technology incidents, outages, cyber events, or data-related concerns. Support transit-specific technology...CyberFull timeContract workFor contractorsCasual workWork at officeRemote work
$90k - $160k
...analytical or investigative experience (intelligence, law enforcement, cyber, fraud, compliance, or research). Strong research instincts and... ...with ambiguity and energized by a fast-moving space; the threats, the tech, and our tooling are always evolving. Real enthusiasm...Cyber- ...steadfast in our journey toward a future that is both bright and transformative. Our expertise spans Enterprise IT, Mission IT and Cyber. With our global footprint, we place a strong emphasis on nurturing our people and culture, which forms the core of our successful...CyberContract workDay shift
$104.8k - $192.2k
Overview In today’s rapidly evolving IT landscape, organizations face increasingly complex cybersecurity risks and regulatory pressures. Identity —both human and non-human—is at the core of every enterprise. As a Digital Identity SME, you will help clients enhance user ...CyberWork experience placementSummer holidayFlexible hours$112.95k - $151.51k
...- Integrity, Advocacy, Commitment, Inclusion, and Excellence - drive everything we do in support of our vision of a safe and secure cyber world. Our globally recognized, award-winning portfolio of certifications provide an independent and globally recognized endorsement...CyberWork experience placementWork at officeRemote work$94.49k - $120k
...Advocacy, Commitment, Diversity, Equity & Inclusion and Excellence - drive everything we do in support of our vision of a safe and secure cyber world. Our globally recognized, award-winning portfolio of certifications provide an independent and globally recognized endorsement...CyberWork experience placementWork at officeRemote work$68.47k - $75.15k
...— Integrity, Advocacy, Commitment, Inclusion, and Excellence — drive everything we do in support of our vision of a safe and secure cyber world. Our globally recognized, award-winning portfolio of certifications provide an independent and globally recognized endorsement...CyberWork experience placementWork at officeRemote work- A forest ranger career could be for you if… Your skills include critical thinking, corrdination and active listening. Your interests can be described as realistic, enterprising and conventional. Your values include relationships, independence and achievement. Forest rangers...
- ..., a fast-growing firm, specializes in IT/Digital Modernization, Cyber Security, NextGen IT, and Emerging Technology services. We provide... ...compliance, managing security policies, responding to threats, and providing operational support across NIPRNet, SIPRNet, and...CyberTemporary workWork experience placementWork at office
$130k - $135k
...detection coverage, and strengthening our detection, response, and threat-informed defense capabilities. It’s ideal for someone who excels... ...SOC operates day-to-day. You’ll play a key role in proactive cyber defense by collaborating across InfoSec teams, enhancing...CyberFull timeRemote workShift workWeekend work- ...timelines, and impacts accurately. Telemetry-Informed Engagement: Use monitoring/ITSM data to route incidents; engage infra/app/cyber/vendor dependencies. Communications & Handoffs: Provide structured internal messaging (leadership updates, stakeholder briefings,...CyberContract workWork experience placementWork at officeShift work
$55.7k - $82.1k
...Incident Response Engineer, Jr. monitors enterprise security tools and logs to detect, analyze, and triage potential cybersecurity threats targeting mission‑critical systems and data. The role performs initial investigations, distinguishes false positives from genuine incidents...Contract workWork at officeShift work- ...role executes the incident response process as defined by enterprise ITSM governance and the Senior Incident Manager, integrates with cyber defenders when needed, and champions readiness and continual improvement. Key Responsibilities War‑Room Facilitation:...CyberContract workWork experience placementWork at officeShift work
$186.9k - $234k
...complex alliance programs across global partner ecosystems. Sales Hunter Mentality: Demonstrated ability to identify, initiate, and... ...Operations Company, leads at the intersection of data protection, cyber resilience, and enterprise AI acceleration. Rubrik Security...CyberLocal areaRemote work- ...the World's AI Transformation Rubrik (RBRK), the Security and AI Operations Company, leads at the intersection of data protection, cyber resilience, and enterprise AI acceleration. Rubrik Security Cloud delivers complete cyber resilience by securing, monitoring, and...CyberLocal area
- ...cybersecurity. The company’s comprehensive, open, and native cybersecurity platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem,...Shift work
$71.2k - $166.1k
...management and engineering project management experience • Federal EHR (VA and/or DoD) engineering and deployment experience • Federal Cyber understanding/experience • Engineering experience with Oracle Health (Cerner) Applications/Platforms • Engineering experience...CyberTemporary workFlexible hours- ...individual clients. We connect clients to solutions that help them protect and grow what matters, including Insurance, Reinsurance, Cyber Services, Mortgage Origination and more. Acrisure employs over 19,000 entrepreneurial colleagues in 22 countries and has grown from...CyberWork at officeImmediate startFlexible hours
- ...steadfast in our journey toward a future that is both bright and transformative. Our expertise spans Enterprise IT, Mission IT and Cyber. With our global footprint, we place a strong emphasis on nurturing our people and culture, which forms the core of our successful...CyberRemote workRelocationDay shift
- ...steadfast in our journey toward a future that is both bright and transformative. Our expertise spans Enterprise IT, Mission IT and Cyber. With our global footprint, we place a strong emphasis on nurturing our people and culture, which forms the core of our successful...CyberContract workDay shift
- Overview Bluewater Federal is looking for a Cybersecurity Lead to support the USAF at Maxwell AFB. The Base Maintenance (BMx) Family of Systems program provides critical lifecycle support for enterprise U.S. Air Force logistics and maintenance systems that enable global...For contractors
- ...Job Description Job Description The Cyber Automation Database Developer will evaluate DISA's cybersecurity tools and processes to identify and implement automation opportunities, focusing on improving the efficiency and effectiveness of J-9 HaC services. This role...CyberTemporary workWork experience placementWork at office
$112.88k - $152.72k
...policies, procedures, and systems. Identify vulnerabilities, threats, and risks to test, training, and operational activities. Assist... ...leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive...CyberFull timeTemporary workPart timeFor contractorsImmediate startRemote workWorldwideFlexible hours- ...future that is both bright and transformative. Our expertise spans consulting and analytics, digital workplace solutions, and cyber compliance. With our global footprint, we place a strong emphasis on nurturing our people and culture, which forms the core of our successful...CyberContract workWork at officeLocal areaAfternoon shift
$40 per hour
A cybersecurity platform seeks experienced professionals to evaluate AI-generated security content and solve cybersecurity challenges. This role offers flexibility as a full-time or part-time remote position, allowing candidates to work on their own schedule and choose ...Hourly payFull timePart timeRemote work- Overview Bluewater Federal is looking for a Software Engineer / Application Developer to support the USAF at Maxwell AFB. The Base Maintenance (BMx) Family of Systems program provides critical lifecycle support for enterprise U.S. Air Force logistics and maintenance systems...For contractors
- About the Role Job Title: Technical Alliance Manager We are looking for a strategic and technically fluent leader to join our team in Cybersecurity Technical Alliances. This role will focus on building and scaling key technology partnerships, with an emphasis on technical...Flexible hoursShift work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Threat Hunter. Be the first to apply!


