Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Threat Hunter

$85.1k - $161.7k

RSM US LLP

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM. As a Senior Threat Hunter/SOC Analyst within RSM Defense, you own high-severity security investigations and help guide the SOC's technical direction across a growing managed security services environment supporting diverse client organizations. You will lead end-to-end incident analysis, validate adversary behavior, and translate evidence into clear containment and remediation guidance tailored to each client's environment and risk context. You will also influence detection engineering and response automation by identifying content gaps, validating improvements against live telemetry, and converting operational lessons learned into durable, repeatable change. The SOC operates on an integrated detection and response model across endpoint, identity, cloud, and network telemetry, supported by AI-assisted analysis and automation to reduce repetitive triage and maximize analyst focus on complex tradecraft, proactive improvements, and mentorship. Key Responsibilities Advanced Investigation, Incident Handling & Incident Response Lead complex, high-severity investigations across endpoint, network, cloud, and identity telemetry. Perform root cause analysis and reconstruct incident timelines using aligned MITRE ATT&CK mapping. Serve as the primary technical liaison during escalated incidents, delivering clear findings and remediation steps to internal leadership and clients. Drive the creation of After-Action Reports (AARs) and lessons learned to improve tooling, detections, and workflow performance. Detection Engineering & Content Support Identify detection gaps and collaborate with Detection Engineering to develop, refine, and tune detection content across relevant telemetry sources. Validate new detections before SOC deployment and provide measurable feedback based on production telemetry. SOAR Automation & Workflow Optimization Leverage SOAR platforms to automate enrichment, triage, and response actions. Identify repetitive patterns ideal for automation and propose workflow enhancements to reduce MTTR. Validate automation logic prior to production rollout and ensure alignment with SOC escalation policies. Collaborate with engineering teams to incorporate additional enrichment sources, threat intel lookups, and AI-driven analysis steps. AI, Machine Learning & Prompt Engineering Utilize AI copilots, enrichment agents, and LLM-based analysis tools to support case triage, enrichment, and investigation. Develop, optimize, and maintain prompt templates for SOC use cases (enrichment summaries, detection validation, log interpretation, hypothesis generation). Evaluate the accuracy and reliability of AI-generated outputs and implement QA steps to avoid hallucinations or misleading results. Identify opportunities to integrate AI agents into detection, triage, and response workflows-improving analyst speed and consistency. Provide feedback to engineering teams on model behavior, content gaps, and automation integration opportunities. Threat Hunting & Proactive Analysis Support hypothesis-driven and intelligence-led hunts by validating findings, artifacts, and suspicious patterns. Recommend new hunts based on emerging TTPs, anomalous case trends, or telemetry gaps discovered during investigations. Ensure hunt findings translate into new detections, enhanced content, or instrumentation improvements. Leadership, Mentoring & Team Development Mentor junior analysts on investigation techniques, tooling proficiency, case documentation, and proper analytical depth. Conduct quality reviews of Tier 1/2 case handling and provide constructive feedback. Contribute to training guides, runbooks, knowledge bases, and onboarding materials. Lead technical briefings, internal workshops, and knowledge-sharing sessions across SOC teams. Reporting & Continuous Improvement Produce clear, concise, and accurate technical reports, incident summaries, and executive-friendly communications. Identify inefficiencies and propose enhancements in monitoring, detection logic, processes, and analyst training. Required Qualifications 5+ years in SOC / detection engineering / threat hunting / incident response (or equivalent depth) Demonstrated experience leading complex investigations and communicating findings to both technical and non-technical stakeholders Hands‑on SIEM/EDR/XDR investigation experience and comfort writing or tuning detections (KQL/SPL/Sigma or similar) Strong working knowledge of incident response lifecycle and evidence‑driven root cause analysis Preferred Qualifications Certifications such as GCIH, GCFA, GCDA, or similar. Experience with Elastic, Splunk, or other search‑based platforms. Knowledge of the MITRE ATT&CK framework. Exposure to scripting languages for automation and enrichment. Key Attributes Curious and detail‑oriented with a passion for proactive defense. Able to work independently or collaboratively in high‑paced environments. Strong written and verbal communication skills. Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. This role provides a hands‑on opportunity to engage in proactive threat detection and response activities and contribute directly to the maturity and effectiveness of the SOC's security posture. At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients. Learn more about our total rewards at All applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender; sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military/Veteran status; pre‑disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at View phone number on click.appcast.io or send us an email at View email address on click.appcast.io. RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate. RSM will consider for employment qualified applicants with arrest or conviction records. For those living in California or applying to a position in California, please click here for additional information. At RSM, an employee's pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range. Compensation Range: $85,100 - $161,700 Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance. #J-18808-Ljbffr RSM US LLP

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Senior Threat Hunter in Charlotte, NC vacancy
  • RSM US LLP in Charlotte, North Carolina is seeking a Senior Threat Hunter/SOC Analyst to lead high-severity security investigations and guide the technical direction of the SOC. The ideal candidate will have over 5 years of experience in threat hunting or incident response... 
    Senior

    RSM US LLP

    Charlotte, NC
    2 days ago
  • TIAA in Charlotte, NC is seeking a Sr Info Sec Threat Hunting Specialist to identify and report threats across the enterprise network. You will monitor threat environments, validate IDS alerts, and work with security teams to strengthen protection. The role requires 3+... 
    Senior

    TIAA

    Charlotte, NC
    3 days ago
  •  ...Microsoft Sentinel and KQL. Strong analytical and communication skills are critical. Candidates should have a proactive approach to threat hunting and familiarity with NIST and MITRE frameworks. The position may require flexibility for night and weekend response. #J-188... 
    Senior
    Night shift
    Weekend work

    Compunnel

    Charlotte, NC
    2 days ago
  • Apex Systems is seeking a senior-level Threat Modeling Architect to join its core application security function in Charlotte, NC (Hybrid). This role focuses on shaping enterprise security strategy by enhancing threat modeling capabilities, emphasizing automation. The ideal... 
    Senior

    Apex Systems

    Charlotte, NC
    5 days ago
  • $85k

     ...Mid-Market Senior Account Executive At NAVEX, we're transforming the worldmaking it safer, more ethical, and ensuring every voice is...  ...prospecting and pipeline generation skills with a demonstrated hunter mentality and ability to manage multiple concurrent opportunities... 
    Senior

    Navex Global, Inc.

    Charlotte, NC
    23 hours ago
  •  ...• Active Responsibilities Lead end-to-end incident response activities from detection to post-incident review. Conduct advanced threat analysis, malware reverse engineering, and forensic investigations. Develop and maintain incident response playbooks and runbooks.... 
    Senior
    Contract work
    Night shift
    Weekend work

    Compunnel

    Charlotte, NC
    4 days ago
  • Truist is seeking a cybersecurity professional in Charlotte, North Carolina, to implement advanced technical solutions across the software development lifecycle. The ideal candidate will have at least 3 years of experience in security engineering, along with relevant educational...
    Senior

    Truist

    Charlotte, NC
    2 days ago
  • Truist is seeking a Cybersecurity Engineer based in Charlotte, NC. This role involves designing and implementing solutions that protect critical assets and collaborating with teams on security practices. Candidates must have a Bachelor’s degree or equivalent experience,...
    Senior

    Truist

    Charlotte, NC
    2 days ago
  •  ...Senior Director, Principal Gifts About the Company Philanthropic organization supporting Indigenous culture & individuals Industry Non-Profit Organization Management Type Non Profit Founded 2017 Employees 11-50 Categories... 
    Senior

    Confidential

    Charlotte, NC
    4 days ago
  • Alside is seeking a motivated Business Development Manager in Charlotte, North Carolina. This role emphasizes new customer acquisition in building remodel and construction markets. The candidate will manage an existing book of business while building a new pipeline from...

    Alside

    Charlotte, NC
    3 days ago
  • A leading financial technology platform is seeking an Inside Sales Account Executive focused on outbound sales and pipeline generation. The ideal candidate will have at least 3 years of experience in inside sales or B2B roles, with proven success in upsell and new business...

    Intuit

    Charlotte, NC
    2 days ago
  •  ...A leading financial institution in Charlotte is seeking a Senior Ethical Hacker to lead assessments of technologies and applications....  ...pentesting experience and extensive knowledge in application security, threat modeling, and penetration testing techniques. This position is... 
    Senior

    Bank of America

    Charlotte, NC
    1 day ago
  • $160k - $220k

    Slalom Build in Charlotte seeks an Account Leader for Financial Services accounts. Responsibilities include maintaining Slalom’s footprint, driving sales, and managing project teams. Candidates should have at least 6 years of experience in account management and project...
    Senior

    Slalom Build

    Charlotte, NC
    3 days ago
  • ECS Southeast, LLP is seeking a Building Enclosure Principal in Charlotte, NC, to lead consulting projects and provide high-level technical expertise in building enclosure investigations and design. The role involves client interactions, project management, and mentorship...
    Senior

    ECS Southeast, LLP

    Charlotte, NC
    2 days ago
  • Worley in Charlotte, NC, is seeking a Structural Engineer to deliver engineering services, manage project requirements, and ensure compliance with specifications. The ideal candidate has extensive experience and a Bachelor degree in Structural Engineering. Responsibilities...
    Senior

    Worley

    Charlotte, NC
    2 days ago
  • A leading IT consulting firm has an exciting opportunity for a Principal/Senior Product Owner in Charlotte, NC. You will oversee a product portfolio, focusing on strategic thinking and hands-on execution. The ideal candidate will have over 10 years of experience in product... 
    Senior
    Full time

    SMART IT People

    Charlotte, NC
    3 days ago
  • ENERCON Services, Inc. is seeking a Civil Structural Engineer for our Data Center Mission Critical Group to produce precise documents and aligned designs, supporting client needs and project success across multiple U.S. locations including Charlotte, NC. You will lead seismic...
    Senior
    Remote job

    Enercon Services, Inc.

    Charlotte, NC
    2 days ago
  • $140k - $204.8k

     ...email and domain ecosystems, serving as a subject matter expert on threats such as phishing, BEC, spoofing, and domain abuse while driving...  ...communications judgment and discretion; ability to engage senior leaders with credibility and professionalism. Exceptional written... 
    Senior
    Shift work
    Day shift

    Koitecc Solutions

    Charlotte, NC
    3 days ago
  • AvidXchange, Inc. based in Charlotte, North Carolina, is seeking a Senior Application Security Engineer to ensure the security and...  ...identify security issues, implementing best practices, and leading threat modeling efforts. The ideal candidate will have over 5 years of... 
    Senior
    Remote job

    AvidXchange, Inc.

    Charlotte, NC
    2 days ago
  •  ...Trinnex is looking for a Senior Cyber Security Analyst in Charlotte, NC. In this position, you will secure the software development...  ...applications deployed in water environments are resistant to evolving threats. Your expertise will be critical in safeguarding systems that... 
    Senior

    Trinnex

    Charlotte, NC
    2 days ago
  • $79 - $80 per hour

     ...communication and forensic skills. Responsibilities include leading investigations, maintaining incident response plans, and driving threat containment efforts. Salary ranges from $79.00 to $80.00 per hour. This position requires cloud experience and involvement in a... 
    Senior
    Hourly pay

    Global Channel Management, Inc

    Charlotte, NC
    2 days ago
  •  ..., and support secure onboarding for internal teams. The role requires hands-on experience with Azure/AWS, Terraform, CloudFormation, and GitLab. You will lead threat modeling, incident response, and remediation across production environments. #J-18808-Ljbffr Jobtailor
    Senior

    Jobtailor

    Charlotte, NC
    4 days ago
  •  ...remediation strategies across the organization. The role emphasizes identity/access management, certificate management, incident response, and threat monitoring with collaboration across Engineering and IT teams to maintain compliance and #J-18808-Ljbffr Lowe's Companies, Inc.
    Senior

    Lowe's Companies, Inc.

    Charlotte, NC
    2 days ago
  • Overview Senior/Principal Civil Engineer to lead and grow the Water Resources & Utilities practice in the Charlotte, NC market. The role combines strong technical expertise with client service and business development, focusing on managing complex projects, cultivating... 
    Senior
    Local area

    Optimal Recruiting

    Charlotte, NC
    2 days ago
  • Oracle Cloud Financials Senior Principal Functional Consultant (GL/AR) IBM - Charlotte, NC Overview Lead functional engagement on Oracle Cloud ERP for GL, AP, AR, Tax, Collections, Expenses, FA & CM modules, driving chart of accounts redesign, month‑end and year‑end close... 
    Senior
    Full time

    IBM

    Charlotte, NC
    2 days ago
  • $103.24k - $133.2k

     ...position offers an opportunity to utilize your legal background in crucial investigations to protect the nation against cybersecurity threats, terrorism, and fraud. Candidates must possess a Bachelor’s degree or J.D. in law, physical fitness for law enforcement duties, and... 
    Senior
    Work at office

    Federal Bureau of Investigation (FBI)

    Charlotte, NC
    2 days ago
  •  ...Senior Security Engineer Location: Charlotte, NC (Partial Remote) Role Overview This role is responsible for leading the company’s security posture through threat analysis, vulnerability management, and compliance oversight. The individual will play a critical role in... 
    Senior
    Remote work

    Apex Systems

    Charlotte, NC
    1 day ago
  • About Us Worley is a global company of energy, chemicals and resources experts headquartered in Australia. We partner with our customers to deliver projects and create value across the life of their assets. We specialize in consulting, engineering, procurement and construction...
    Senior
    Local area

    Worley

    Charlotte, NC
    2 days ago
  • Job Title: Senior Security Engineer - Vulnerability Management (Qualys AI Specialist) Location: Charlotte, NC or Mt. Laurel Township,...  ...: $58.09/hr. on W2 | $69.80/hr. on C2C Domain: Cybersecurity / Threat & Vulnerability Management (TVM) Application Deadline: July 10,... 
    Senior
    Contract work
    3 days per week

    Pacer Group

    Charlotte, NC
    2 days ago
  • $109.9k - $125.4k

     ...Principal Auditor (Experienced Senior Auditor) Corporate Compliance Audits (Hybrid) Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organization's Audit Committee. Audit professionals are... 
    Senior
    Full time
    Part time
    Local area
    3 days per week

    Capital One Financial Corp

    Charlotte, NC
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Threat Hunter. Be the first to apply!