Senior Threat Hunter
$85.1k - $161.7kRSM US LLP
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM. As a Senior Threat Hunter/SOC Analyst within RSM Defense, you own high-severity security investigations and help guide the SOC's technical direction across a growing managed security services environment supporting diverse client organizations. You will lead end-to-end incident analysis, validate adversary behavior, and translate evidence into clear containment and remediation guidance tailored to each client's environment and risk context. You will also influence detection engineering and response automation by identifying content gaps, validating improvements against live telemetry, and converting operational lessons learned into durable, repeatable change. The SOC operates on an integrated detection and response model across endpoint, identity, cloud, and network telemetry, supported by AI-assisted analysis and automation to reduce repetitive triage and maximize analyst focus on complex tradecraft, proactive improvements, and mentorship. Key Responsibilities Advanced Investigation, Incident Handling & Incident Response Lead complex, high-severity investigations across endpoint, network, cloud, and identity telemetry. Perform root cause analysis and reconstruct incident timelines using aligned MITRE ATT&CK mapping. Serve as the primary technical liaison during escalated incidents, delivering clear findings and remediation steps to internal leadership and clients. Drive the creation of After-Action Reports (AARs) and lessons learned to improve tooling, detections, and workflow performance. Detection Engineering & Content Support Identify detection gaps and collaborate with Detection Engineering to develop, refine, and tune detection content across relevant telemetry sources. Validate new detections before SOC deployment and provide measurable feedback based on production telemetry. SOAR Automation & Workflow Optimization Leverage SOAR platforms to automate enrichment, triage, and response actions. Identify repetitive patterns ideal for automation and propose workflow enhancements to reduce MTTR. Validate automation logic prior to production rollout and ensure alignment with SOC escalation policies. Collaborate with engineering teams to incorporate additional enrichment sources, threat intel lookups, and AI-driven analysis steps. AI, Machine Learning & Prompt Engineering Utilize AI copilots, enrichment agents, and LLM-based analysis tools to support case triage, enrichment, and investigation. Develop, optimize, and maintain prompt templates for SOC use cases (enrichment summaries, detection validation, log interpretation, hypothesis generation). Evaluate the accuracy and reliability of AI-generated outputs and implement QA steps to avoid hallucinations or misleading results. Identify opportunities to integrate AI agents into detection, triage, and response workflows-improving analyst speed and consistency. Provide feedback to engineering teams on model behavior, content gaps, and automation integration opportunities. Threat Hunting & Proactive Analysis Support hypothesis-driven and intelligence-led hunts by validating findings, artifacts, and suspicious patterns. Recommend new hunts based on emerging TTPs, anomalous case trends, or telemetry gaps discovered during investigations. Ensure hunt findings translate into new detections, enhanced content, or instrumentation improvements. Leadership, Mentoring & Team Development Mentor junior analysts on investigation techniques, tooling proficiency, case documentation, and proper analytical depth. Conduct quality reviews of Tier 1/2 case handling and provide constructive feedback. Contribute to training guides, runbooks, knowledge bases, and onboarding materials. Lead technical briefings, internal workshops, and knowledge-sharing sessions across SOC teams. Reporting & Continuous Improvement Produce clear, concise, and accurate technical reports, incident summaries, and executive-friendly communications. Identify inefficiencies and propose enhancements in monitoring, detection logic, processes, and analyst training. Required Qualifications 5+ years in SOC / detection engineering / threat hunting / incident response (or equivalent depth) Demonstrated experience leading complex investigations and communicating findings to both technical and non-technical stakeholders Hands‑on SIEM/EDR/XDR investigation experience and comfort writing or tuning detections (KQL/SPL/Sigma or similar) Strong working knowledge of incident response lifecycle and evidence‑driven root cause analysis Preferred Qualifications Certifications such as GCIH, GCFA, GCDA, or similar. Experience with Elastic, Splunk, or other search‑based platforms. Knowledge of the MITRE ATT&CK framework. Exposure to scripting languages for automation and enrichment. Key Attributes Curious and detail‑oriented with a passion for proactive defense. Able to work independently or collaboratively in high‑paced environments. Strong written and verbal communication skills. Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. This role provides a hands‑on opportunity to engage in proactive threat detection and response activities and contribute directly to the maturity and effectiveness of the SOC's security posture. At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients. Learn more about our total rewards at All applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender; sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military/Veteran status; pre‑disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at View phone number on click.appcast.io or send us an email at View email address on click.appcast.io. RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate. RSM will consider for employment qualified applicants with arrest or conviction records. For those living in California or applying to a position in California, please click here for additional information. At RSM, an employee's pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range. Compensation Range: $85,100 - $161,700 Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance. #J-18808-Ljbffr RSM US LLP
- A national cybersecurity firm is seeking a Remote Sr. Cyber Threat Hunter with 5 years of experience in Information Security. The ideal candidate will have knowledge of malicious code, security methodologies for various operating systems, and experience in analyzing security...SeniorRemote job
- RSM US LLP in Atlanta, GA is seeking a Senior Threat Hunter/SOC Analyst to lead high-severity security investigations and guide the SOC's technical direction across a managed security services environment. You will conduct incident analysis, validate adversary behavior...Senior
$110k - $140k
A leading technology consulting firm is seeking a senior threat hunter in Atlanta, specializing in digital forensics and threat intelligence using SPLUNK. The role involves managing security incidents, leading response teams, and conducting in-depth analyses. Candidates...SeniorFull time2 days per week3 days per week- Carter’s Inc. is seeking a Senior Information Security Analyst in Atlanta, GA to monitor security events, lead incident response, and drive threat detection improvements. You will collaborate with IT, DevOps, and business teams to embed security into system design. Ideal...Senior
$100 - $108 per hour
...Remote Sr. Cyber Threat Hunter Atlanta, Georgia, United States $ 100.00 - 108.00 (US Dollar) About the Job Remote Sr. Cyber Threat Hunter needs 5 years experience in Information Security required and 1 year experience with information technology concepts, terminology...SeniorRemote jobWork at office$94.1k - $150k
...Position Overview The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network, endpoint, and log data to identify malicious activity that may evade conventional security controls. This role establishes normal traffic...Contract workWork at office$110k - $140k
...talk with your recruiter to learn more. Base pay range $110,000.00/yr - $140,000.00/yr An Insight Global client is hiring a senior threat hunter, strong in digital forensics, malware analysis, and threat intelligence using SPLUNK. Contract to hire in Midtown (Atlanta),...Full timeContract workWork experience placement2 days per week3 days per week$94.1k - $150k
ASM Research, An Accenture Federal Services Company, is seeking a Cyber Threat Hunter to proactively protect enterprise environments from advanced cyber threats. This role involves analyzing network, endpoint, and log data to detect and investigate malicious activities....$83.85k - $107.95k
Dentons US LLP is hiring a Threat Analyst located in Atlanta, GA, responsible for proactive threat hunting and enhancing security operations. The ideal candidate will have a background in computer science, strong experience in SIEM technologies, and the ability to analyze...- Carter's Inc. in Atlanta, GA is seeking a Senior Information Security Analyst to lead complex investigations, drive improvements in monitoring... ...and processes, mentor junior analysts, and contribute to threat modeling, forensics, and regulatory compliance initiatives. #J-...Senior
- Delta Air Lines is seeking a skilled Cyber Threat Intelligence Analyst to join its Information Security team. You will profile threats,... ...and develop actionable guidance for incident response. This is a senior role requiring hands-on security experience and the ability to...Senior
- Carter’s Inc. is seeking a Senior Security Analyst to join the IT Security team. You will lead complex investigations, drive improvements... ...security monitoring, vulnerability management, incident response, threat hunting, and security engineering. #J-18808-Ljbffr Carter'sSenior
- The Matlen Silver Group, Inc. is seeking an Enterprise Insider Threat Principal Analyst for locations in Atlanta, Charlotte, or Greensboro. This role requires a Bachelor's degree and at least seven years of experience in banking or financial services with a focus on insider...Senior
- Delta Air Lines, Inc. is seeking a Cyber Threat Intelligence Analyst to join its Information Security team in Atlanta. You will profile threats, monitor sources, and deliver daily intelligence reports to executives, helping protect Delta’s information systems. Ideal candidates...Senior
- Ryder System, Inc. is seeking a Senior Security Operations Center Analyst to plan and implement security measures, monitor networks, and... ...to incidents. You will conduct deep analysis, correlate with threat intelligence, and guide containment and remediation strategies for...Senior
- SecurityScorecard in Atlanta, GA is seeking an experienced engineer for its STRIKE Threat Intelligence team. The role involves transforming research outputs into deployable detection rules and managing platform components in a dynamic environment. The ideal candidate has...SeniorRemote job
- Regions Bank seeks a Cyber Security Senior Manager to lead a diverse team protecting bank assets. You will guide incident response, threat intelligence, and security controls across malware defense, network security, and data protection. You will partner with TODD teams...Senior
- Google is seeking experienced Security Engineers to drive incident response and forensics. The ideal candidate will have extensive experience in managing incident response operations and will collaborate to enhance security for Google's services. This role requires a Bachelor...Senior
- Truist in Atlanta, Georgia is seeking a security engineer to design advanced cybersecurity solutions and protect critical assets. You will implement security measures across software development, perform security testing, and ensure compliance with industry standards. The...Senior
- Enterprise Insider Threat Principal Analyst (Atlanta, Charlotte, Greensboro) - W2 ONLY (BH-109981) Location: North Carolina, United States Sector: Banking Non Negotiables Bachelor’s degree or equivalent experience in research, evidence gathering, investigation and documentation...Work at officeNight shift
$142.5k - $192.5k
...Capital. About the Role You’ll join STRIKE, SecurityScorecard's Threat Intelligence team, as the engineering counterpart to research.... ...problem this role is here to solve. You’ll work directly with the senior technical leader who owns STRIKE's R&D direction, and report to...Senior- East West Manufacturing Llc seeks a dynamic Business Development Manager to spearhead growth in the Industrial sector. This role involves acquiring new customers, enhancing market share, and collaborating with cross-functional teams to innovate solutions. The ideal candidate...Remote job
- A leading technology company seeks a Strategic Development Manager responsible for new logo sales in the mid-market. Ideal candidates will have 3-5 years of success selling HRMS/Payroll solutions, along with excellent communication and organizational skills. The role involves...Remote job
- A leading SaaS company is seeking a driven SaaS Sales Executive in Atlanta to hunt and acquire clients within the transportation and logistics industry. The ideal candidate will have at least 5 years of SaaS sales experience and a proven track record of success. This role...
- MTD Water is looking for a Sales Manager in Atlanta, GA to develop new business in the industrial water market. This role involves managing a pipeline of new clients across sectors such as government, industrial operations, and NGOs. The ideal candidate will have a bachelor...
- Realtime Recruitment is seeking a Business Development Executive in Atlanta to drive new business across large enterprise customers. This role entails managing complex, consultative sales cycles and owning the full sales process from prospecting to closing. The ideal candidate...
- Bristlecone is seeking a high-performing Senior SAP Services Sales Executive to drive growth in the Southeast region, focusing on Atlanta. This hunter role involves building a pipeline from scratch and closing complex SAP deals exceeding $1M. The ideal candidate will leverage...Local area
- Janel Group is seeking a Business Development Manager to lead growth initiatives in the Southeast region. The ideal candidate will drive new business and build relationships within logistics and freight forwarding. Responsibilities include developing sales strategies, managing...
- Cortavo is seeking a Sales Representative to identify and close services revenue opportunities with prospective clients. In this hunting role, you will engage target accounts, articulate Cortavo's value proposition, and drive revenue growth. The position reports directly...
$120k
Valet Living, LLC is seeking a driven Business Development Representative in Atlanta. This role focuses on generating new business and expanding client relationships in a fast-paced environment. The ideal candidate should have at least 2 years of outside sales experience...Flexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Threat Hunter. Be the first to apply!
- sales hunter Atlanta, GA
- hunter Atlanta, GA
- senior trade analyst Atlanta, GA
- senior app developer Atlanta, GA
- senior customer service advisor Atlanta, GA
- senior international account manager Atlanta, GA
- senior product manager mobile Atlanta, GA
- senior magento developer Atlanta, GA
- senior quantitative risk analyst Atlanta, GA
- senior business development director Atlanta, GA

