Senior Threat Hunter Analyst
Revolutional, LLC
Job Description
Job Description
Revolutional delivers advanced technology solutions and mission support to federal agencies across civilian, health, and national security environments. We apply modern capabilities, including AI/ML, cloud, cybersecurity, and IT modernization to solve complex challenges, enable faster and more secure operations, and drive measurable mission outcomes.
We are redefining how federal technology gets built and delivered by operating with a product mindset, prioritizing speed, ownership, and execution over bureaucracy.
Senior Threat Hunter AnalystLocation: Washington, DC, Ft. Collins, CO, or Kansas City, MO (remote optional, local preferred)
Terms: Full-time
Clearance: Active Top Secret required
Travel: 0-10%
Project DescriptionThis position supports a large-scale federal security operations program delivering 24/7/365 continuous monitoring, intrusion detection, threat hunting, incident response, and threat intelligence across a complex enterprise network environment. The threat hunting function operates at the leading edge of the program's defensive posture — finding what automated tools miss before it becomes a confirmed incident.
The core challenge: proactively hunting adversary activity across a large, high-complexity enterprise network, supporting active incident response, and producing intelligence products that sharpen the program's detection and response capabilities over time.
Position DescriptionAs a Senior Threat Hunter Analyst at Revolutional, you operate ahead of the threat — proactively hunting for undetected adversary activity across enterprise networks before it surfaces through automated detection. You are a technically deep practitioner who combines hunting tradecraft with malware analysis capability, incident response support, and the discipline to produce IOC reports, after-action reviews, and security metric reporting that make the program measurably better over time.
You work in close coordination with the Cyber Threat Intelligence team, maintaining threat indicator feeds that keep your hunts current and your findings actionable. You conduct CND triage, support active incidents with analysis, and author finished intelligence products from open-source portals. Your output reaches both technical peers and program management.
What You Will Own- Proactive threat hunting across enterprise network environments for undetected adversary activity
- Malware analysis in support of hunt findings and incident response
- CND triage and analysis support for active incident response operations
- Threat indicator feed maintenance in coordination with the Cyber Threat Intelligence team
- IOC report authorship from open-source intelligence portals
- After-action and lessons-learned documentation for significant hunts and incidents
- Security event and metric reporting for program management
- Proactively hunt for undetected cyber threats across enterprise network environments using network flow, PCAP, log data, endpoint telemetry, and SIEM data; operate ahead of automated detection capabilities
- Conduct Computer Network Defense (CND) triage: assess alerts and anomalies, determine threat validity, and prioritize findings for response or further investigation
- Provide analysis support to incident response operations; contribute host and network analysis, malware triage, and attacker TTP reconstruction during active incidents
- Perform malware analysis on samples collected during hunts and incidents; identify behavioral indicators, persistence mechanisms, and IOCs for operationalization
- Maintain and update threat indicator feeds in coordination with the Cyber Threat Intelligence team; ensure hunt operations are informed by current intelligence
- Author IOC reports from open-source intelligence portals; package findings into finished products suitable for both technical teams and program leadership
- Prepare after-action reports and lessons-learned documentation following significant hunts and incidents; identify detection gaps and recommend improvements
- Produce security event and metric reports for program management; communicate hunt findings, detection trends, and program health in clear, data-supported terms
- Develop and maintain reusable hunt tactics, SIEM queries, and detection logic that improve the program's long-term detection capability
- Stay current on adversary TTPs, malware families, threat actor trends, and emerging attack techniques relevant to the federal enterprise environment
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
- 5 or more years of experience in threat hunting, security operations, or a closely related technical discipline
- Active Top Secret clearance required
- Demonstrated experience proactively hunting for adversary activity across enterprise networks using hypothesis-driven and intelligence-driven hunt methodologies
- Hands-on IDS/IPS experience: signature review, alert triage, anomaly identification, and tuning to reduce noise and improve detection fidelity
- Proficiency with SIEM platforms: search language, query development, correlation rule creation, dashboard operations, and metric reporting
- Malware analysis experience including behavioral analysis, static review, IOC extraction, and identification of adversary tooling and techniques
- Experience conducting CND triage and supporting incident response with technical analysis under operational tempo
- Experience authoring IOC reports and finished intelligence products from open-source intelligence (OSINT) portals
- Experience preparing after-action reports and lessons-learned documentation that drive concrete defensive improvements
- Familiarity with MITRE ATT&CK framework applied to hunt hypothesis development and TTP mapping
- Current knowledge of adversary TTPs, threat actor trends, and the evolving federal cybersecurity threat landscape
- Proactive and analytically driven — you hunt because you assume the adversary is already in, and you don't stop until the evidence tells you otherwise
- Technically fluent across hunting, malware analysis, and incident response — you shift between disciplines fluidly as the mission demands
- Strong written communicator: your IOC reports, after-actions, and metric reports are clear, accurate, and written for the audience
- Collaborative partner to threat intelligence and incident response teams — your findings feed the broader program, not just your own queue
One or more of the following is strongly preferred:
- GCIH (GIAC Certified Incident Handler), GCIA (GIAC Certified Intrusion Analyst), GCTI (GIAC Cyber Threat Intelligence), GREM (GIAC Reverse Engineering Malware), CySA+, or equivalent
- Experience threat hunting in a federal civilian, defense, or intelligence SOC environment
- Proficiency scripting in Python or equivalent for hunt automation and IOC enrichment workflows
- Experience with threat intelligence platforms (TIPs) and integrating CTI data into active hunt operations
- Background in advanced malware reverse engineering or exploit analysis
- Familiarity with cloud-native hunting across commercial or GovCloud environments
#DICE #LinkedIn
___________________________________________________________________________________________________________
Here at Revolutional we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day. Some of these recognitions include:
- Recognized as a Top 20 "Best Place to Work in Virginia"
- Recipient of Department of Labor's HireVets Gold Medallion
- Great Place to Work Certification for five years running
- A Virginia Chamber of Commerce Fantastic 50 company
- A Northern Virginia Technology Council Tech 100 company
- Inc. 5000 list of fastest growing companies for eleven years
- Two-time SBA SBIR Tibbett's Award winner
- Virginia Values Veterans (V3) Certification
We recognize that every bit of our success is the result of our teams of hard-working, motivated, and innovative professionals who are proud to call themselves part of the Revolutional family! In addition to competitive compensation, a family-focused culture, and a dynamic, productive work environment, we offer all full-time employees a variety of benefits including, but not limited to
- Traditional and HSA- eligible medical insurance plans
- 100% employer-paid dental and vision insurance options
- 100% employer-sponsored STD, LTD, and life insurance
- 5% 401(k) company matching
- Flexible-schedules and teleworking options
- Paid holidays and PTO Accrual Plans
- Paid Parental Leave
- Professional development and career growth opportunities
- Team and company-wide events, recognition, and appreciation-- and so much more!
Check out our Revolutional | LinkedIn to find out a little more about who we are and if we are the right next step for your career!
Revolutional is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics. Revolutional does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans. To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily. Other duties in addition to those listed may be assigned as necessary to meet business needs. Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job. If you are in need of an accommodation, please contact View email address on ziprecruiter.com.
$85k
Summary The Senior Security Operations Center Analyst will be responsible for planning and implementing security measures to protect computer systems, networks... ...Incidents and performs deep analysis; correlates with threat intelligence to identify the threat actor, nature of...SeniorWork at office- CHAOS Industries in Washington, D.C. is seeking a SOC Analyst II to join our Security Operations team. This role focuses on monitoring, triaging, and responding to cybersecurity threats. The ideal candidate will possess a strong technical foundation and a passion for operational...Suggested
- Leidos is seeking a Hunt Analyst to support the Insider Threat Program for the Department of Homeland Security. The role involves analyzing insider threat data and coordinating responses to emerging requirements. Candidates must have at least 12 years of relevant experience...Suggested
- UKG (Ultimate Kronos Group) is seeking a Senior Staff SOC Analyst to join the Global Security Operations team. You will lead major cyber incident command activities, perform hands-on threat hunting, and coordinate investigations across SOC, Threat Intelligence, and Cloud...Senior
- LAUKOA seeks an Insider Threat Specialist to support a government agency at Fort Belvoir, VA. The role requires active TS/SCI clearance and on-site work. You will analyze data, identify insider threat indicators, and deliver concise briefings and written assessments in...Senior
$131.3k - $237.35k
Leidos Inc is seeking a Senior Incident Response Analyst to join their team in Arlington, Virginia. The role involves coordinating incident response efforts, analyzing cyber threats, and developing security protocols for the Department of Homeland Security's CISA Program...Senior- ...Solutions Inc, located in Arlington, Virginia, is seeking Intelligence and Operations Analysis Specialists. The role involves analyzing CI threats and developing comprehensive research studies. Qualified candidates will collaborate closely with stakeholders and must have a TS/...Senior
$100k - $120k
SkyePoint Decisions, Inc. is seeking a Mobile Threat Analyst in Arlington, VA, to support the Diplomatic Security Cyber Mission. The role involves conducting forensic examinations of mobile devices and analyzing malicious behavior within applications. Candidates should...SeniorFlexible hours- SkyePoint Decisions is seeking a Mobile Threat Analyst to support the Diplomatic Security Cyber Mission program, located in Arlington, VA. This role requires demonstrated forensic expertise in mobile devices and the ability to conduct detailed assessments of threats. Responsibilities...Senior
- Peraton is seeking a Mobile Threat Analyst based in Arlington, VA. The role involves conducting forensic examinations of mobile devices, analyzing mobile applications for threats, and assessing cybersecurity environments to bolster U.S. missions globally. Candidates should...SeniorFull time
- Terrestris Global Solutions in Washington, DC is seeking a Senior Security Operations Analyst to monitor and respond to cybersecurity threats. The candidate will analyze security events, manage incident response, and support the National Indian Gaming Commission's cybersecurity...Senior
- Saic is seeking a PAI Analyst Senior in Arlington, VA, to provide technical expertise in identifying risks to national security. This role... ...of OSINT technologies and the ability to analyze emerging threats effectively. The ideal candidate will possess U.S. citizenship...Senior
$104k - $166k
Peraton in Arlington, VA is seeking a Mobile Threat Analyst to conduct forensic examinations of mobile devices and analyze mobile applications for threats. The ideal candidate will have a Bachelor’s degree and relevant experience, possess cybersecurity certifications,...Senior- A defense contractor is seeking a Senior All-Source Analyst (Production / Janus/Hard Target) to support USCYBERCOM J2 in the National Capital Region... ...with a bachelor's degree, alongside knowledge in cyber threat analysis and the ability to work independently. The position...SeniorFor contractors
- Blue Rose Consulting Group, Inc. is seeking candidates for a role focused on SIEM administration and threat monitoring. Applicants should have over 3 years of relevant experience and be familiar with OSINT monitoring and digital forensics. The position requires at least...SeniorContract work
- Senior Analyst Cooperative Threat Reduction Policy (CTR) Exempt Professional Arlington, VA, US 3 days ago Requisition ID: 1246 Position Description: Senior Analyst Cooperative Threat Reduction Policy (CTR) Location: On‑Site, National Capital Region Employment Category...SeniorFull timeWork at office
- Ampcus, Inc is hiring a Senior Cyber Security Analyst in Washington, DC. This role involves the administration of cyber control technologies and is crucial for monitoring and responding to cyber incidents in both IT and Operational Technology (OT) networks. The ideal candidate...Senior
$120k - $145k
...Shared Services is seeking an experienced Information Security Analyst Subject Matter Expert (SME) located in Washington, D.C. The salary... ...performing various security analysis activities, maintaining threat awareness, and executing incident response activities. The...SeniorFull time- ...in Arlington, VA is seeking a Performance Analyst to support a government customer. The... ...cross‑agency initiatives focused on counter-threat finance, monitors program performance, and... ...should have ten years’ experience with senior ranks or SES, strong communication skills...Senior
- UltraViolet Cyber, located in McLean, Virginia, is actively seeking a Cyber Threat Researcher (Level II) for its Threat Intelligence & Detection Engineering team. This role involves engaging in threat hunts and creating effective threat detections to protect clients from...Senior
- ...missions worldwide. Job Description *** This position is contingent upon contract award *** Overview SOSi is seeking a Senior Threat Hunter to support proactive cyber defense activities in alignment with our customer. This role is responsible for conducting threat...SeniorContract workWork at officeWorldwideMonday to FridayWeekend workAfternoon shift
- ...speed, ownership, and execution over bureaucracy. Title: Senior Threat Hunter Location: Washington, DC or Chandler, AZ Terms: Full... ...reports and briefings for audiences ranging from technical analysts to executive leadership Develop, update, and maintain standard...SeniorFull timeWork experience placementFlexible hours
- Saic is hiring a Financial Intel Analyst in Arlington, VA. The role involves analyzing cryptocurrency and financial intelligence to support national security objectives. The successful candidate will produce actionable intelligence reports and collaborate with the intelligence...Senior
- Whateverittakescom is looking for a Tier 3/4 Analyst to support mission-critical operations in Washington, DC. The ideal candidate should demonstrate in-depth knowledge of network security, incident management, and communication skills suitable for both technical and non...Senior
$132k
A government contractor is seeking a mid- or senior-level All Source Analyst in Arlington, Virginia. This role supports the Army G-2 with China-focused analysis, requiring a strong background in Chinese geography, culture, and extensive experience briefing senior leaders...SeniorFor contractors- ...Bureau of International Security (ISN), Office of Cooperative Threat Reduction (CTR)’s global programs aimed at reducing threats posed... ...as associated material, equipment, and expertise. The Senior Analyst will provide advanced professional, scientific, and technical...SeniorContract workWork at office
- ...Candidates must possess a TS/SCI clearance and have at least 8 years of relevant experience in incident response, knowledge of operational threat environments, and strong communication skills. This position values collaboration and encourages innovation in tackling complex...SeniorRemote work
$107.9k - $195.05k
...The Leidos Digital Modernization sector is looking for a Cyber Threat Hunter to support a Defensive Cyber Operations (DCO) team in... ...hours (0600 - 1600), this position will be supporting a team of analysts working 24/7 rotating shifts (days, swings, nights). As such,...Summer workCasual workLocal areaRemote workShift workNight shiftRotating shift- cFocus Software seeks a Mid Level Cyber Threat Hunter to join our program supporting US Courts in Washington, DC. This position is 4 days... ...One of the following certifications: GIAC Certified Intrusion Analyst (GCIA) GIAC Certified Incident Handler (GCIH) GIAC Continuous...Work at officeRemote work
- A leading technology company is seeking a Cyber Threat Hunter to join their Defensive Cyber Operations team in Washington, DC. The role involves developing hunt campaigns, conducting advanced telemetry analysis, and maintaining high levels of situational awareness regarding...Remote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Threat Hunter Analyst. Be the first to apply!
- sales hunter Washington DC
- hunter Washington DC
- cyber threat hunter Washington DC
- senior trade analyst Washington DC
- law enforcement response team analyst Washington DC
- etl analyst Washington DC
- command center analyst Washington DC
- land analyst Washington DC
- senior analyst Washington DC
- behavioral analyst Washington DC
