Cyber Threat Hunter
$94.1k - $150kASM Research, An Accenture Federal Services Company
Position Overview
The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network, endpoint, and log data to identify malicious activity that may evade conventional security controls. This role establishes normal traffic and data-flow baselines, detects anomalies, develops threat hypotheses, and investigates adversary tactics, techniques, and procedures to strengthen cyber defense and incident response operations. This role directly supports a proactive SOC model by contributing to detection engineering, monitoring enhancements, automation development and continuous gap analysis to identify and mitigate emerging threats before they materialize.
Key Responsibilities
Conduct proactive threat hunting across networks, endpoints, and security datasets to identify, isolate, and help eradicate advanced threats before they impact operations.
Analyze logs from multiple sources, including packet captures, correlation engines, parsed security data, and endpoint telemetry, to detect suspicious behavior and validate threat activity.
Establish and maintain baseline patterns for normal traffic, system activity, and data flows to improve anomaly detection and investigative accuracy.
Collaborate closely with SOC analysts and detection engineers to recommend new alerts, analytics, and monitoring logic based on threat hunting findings, emerging trends, and identified visibility gaps.
Develop automation scripts and workflows (using SOAR platforms, Python, PowerShell, or similar tools) to streamline threat hunting activities, automate repetitive analytical tasks, and reduce detection and response time.
Research and track adversary tactics, techniques, and procedures (TTPs), developing technical hypotheses and investigative leads based on threat intelligence and observed behaviors.
Support incident response activities by creating incident documentation, follow-up actions, reporting criteria, and recommendations that improve overall response maturity and operational resilience.
Examine and characterize malware and cyber threats, including viruses, worms, bots, rootkits, and Trojan horses, to determine threat nature, scope, and potential impact.
Apply reverse engineering and binary analysis techniques using tools such as Ghidra and IDA Pro to support vulnerability research and understand malicious code behavior.
Required Qualifications
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field, or equivalent relevant experience.
4 years of experience in cybersecurity or a closely related technical security role.
Demonstrated ability to perform system administrator-level analysis across multiple platforms and operating systems in support of cyber investigations.
Strong analytical and problem-solving skills with the ability to identify, track, and assess adversary TTPs and suspicious activity.
Knowledge of intrusion detection methodologies, evidence preservation practices, and cyber defense and information security policies, procedures, and regulations.
Ability to support work in a U.S.-only staffing environment and satisfy any client-required background investigation or security requirements.
Preferred Qualifications
Relevant cybersecurity certifications such as GCDA, GNFA, CompTIA PenTest+ (Removed CISSP), CISM, or CompTIA CySA+.
Experience with reverse engineering, malware analysis, vulnerability research, and threat analysis in enterprise or government environments.
Familiarity with U.S. Army Corps of Engineers (USACE) IT policies and operational security requirements.
Experience preparing technical reports, incident summaries, and threat findings for stakeholders and operational leadership.
Job Specific Skills
Threat hunting and anomaly detection.
Log correlation and security event analysis.
Packet capture analysis and data parsing.
Malware analysis, reverse engineering, and binary analysis.
Threat intelligence analysis and TTP identification.
Incident response documentation and reporting.
Detection engineering collaboration and monitoring enhancement support.
Compensation Ranges
Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees.
EEO Requirements
It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.
All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment.
Physical Requirements
The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions.
Disclaimer
The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
$94,100 - $150,000
EEO Requirements
It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.
All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment.
$94.1k - $150k
...Position Overview The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network, endpoint, and log data to identify malicious activity that may evade conventional security controls. This role establishes normal traffic...CyberContract workWork at office- ...applicants requiring visa or OPT sponsorship. Cytel is seeking a Cyber Security Analyst to support and enhance the organization’s... ...understanding of security operations concepts is required, including threat detection, incident investigation, log analysis, and response methodologies...CyberPermanent employment
$66.9k - $82.1k
...strategies with infrastructure and application teams to contain threats while preserving evidence and minimizing operational disruption.... ...tools and service management platforms integrated with SOC and cyber defense functions. Certifications such as ITIL Foundation plus...CyberContract workWork experience placementWork at office- ...site Certification and Accreditation (C&A). Continuously review threat, system vulnerabilities, and residual risk. Other duties as... ...of experience may be utilized Credentials that meet DoD Cyber Workforce requirements for specialty codes 441 (Network Operations...CyberContract workWork at officeRemote work
$87.7k - $164k
...Ernst & Young Oman is looking for a Cyber Triage and Forensics Incident Analyst to join its team in Carson City, Nevada. This senior... ...forensic analysis, and utilizing SIEM technologies to hunt for threats. The candidate will be responsible for investigating incidents,...CyberFlexible hours$106.8k - $194.8k
...will be responsible for implementing and managing Web Application Firewall (WAF) solutions to protect client applications from cyber threats. You will work within a team of cybersecurity professionals to establish effective security measures that safeguard web applications...CyberSummer holidayFlexible hours$87.7k - $164k
...Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider... ...Provide consultation and assessment on perceived security threats Maintain, manage, improve and update security incident process...CyberSummer holidayLocal areaFlexible hours$84.63k - $112.84k
...connectivity. In this role, you'll respond to and mitigate cybersecurity threats while proactively identifying risks and strengthening our... ...guides for accuracy. Support Security projects to improve Cyber Defense Team or Lumen's security posture. Demonstrate effective...CyberTemporary workRemote workShift work- ...Defender, CrowdStrike Falcon, Trellix, Splunk, and Zscaler. Lead threat hunting and vulnerability assessments to identify and mitigate... ...cybersecurity strategy and drive decisions. Identify gaps in cyber operations and implement improvements. Design and deliver...CyberHourly payPermanent employmentContract workLocal areaRemote work
- ...Trinnex is seeking a Senior Cyber Security Analyst to join their Security Team. This role focuses on the intersection of cybersecurity and DevSecOps, safeguarding software systems essential for water utilities. The chosen candidate will implement security controls, identify...Cyber
- ...Cytel is hiring a Cyber Security Analyst to enhance their information security operations. This role involves monitoring and investigating security events to protect corporate systems and client data in a regulated environment. The ideal candidate will have at least 3–...Cyber
$89k - $143.75k
.... Performing software code reviews and design reviews with a cyber-lens. Performing periodic risk assessment of security vulnerabilities... ...security risks from sources such as penetration testing, threat modeling, vulnerability management etc. Other Requirements:...CyberFull timeTemporary workWork at officeLocal areaRemote workNight shift$59.81 per hour
...processes (e.g., methods for assessing and mitigating risk). Knowledge of cybersecurity and privacy principles. Knowledge of cyber threats and vulnerabilities. Either directly or in collaboration with MSP, train and manage staff. Analyze All-Source...CyberWork experience placement$104.8k - $192.2k
Overview In today’s rapidly evolving IT landscape, organizations face increasingly complex cybersecurity risks and regulatory pressures. Identity—both human and non-human—is at the core of every enterprise. As a Digital Identity SME, you will help clients enhance user ...CyberWork experience placementSummer holidayFlexible hours- ...assisting with containment, vulnerability management, and compliance activities. The role works under senior guidance to execute defined cyber actions, maintain incident documentation, support POA&M and ISVM tracking, and assist with patching, testing, and spill response....CyberMinimum wageFull timeContract workTemporary workWork experience placementRemote work
- ...Assurance Technical (IAT) Level II baseline certification A Bachelors Degree with Technical training related to Information Technology, Cyber Security, Computer Science, or related discipline Or a High School diploma/GED with Technical training related to Information...CyberFull timeContract workPart timeInterim roleLocal areaFlexible hours
- ...decisions, timelines, and impacts accurately. Telemetry‑Informed Engagement: Use monitoring/ITSM data to route incidents; engage infra/app/cyber/vendor dependencies. Communications & Handoffs: Provide structured internal messaging (leadership updates, stakeholder briefings,...CyberContract workWork experience placementWork at officeShift work
- ...business language; maintain SSOT. Cross‑Practice Integration: Coordinate with Problem, Change, Release, Service Continuity, and SOC/Cyber IR where service impact/security intersects; support PIRs and trend analysis. Readiness & Drills: Run tabletop exercises; review playbooks...CyberContract workWork experience placementWork at officeShift work
$55.7k - $82.1k
...Incident Response Engineer, Jr. monitors enterprise security tools and logs to detect, analyze, and triage potential cybersecurity threats targeting mission‑critical systems and data. The role performs initial investigations, distinguishes false positives from genuine incidents...Contract workWork at officeShift work$190k - $210k
...or task order business. Develops and maintain sales pipeline in commercial and federal markets to support commercial sales and other cyber related products and services. Acts as liaison with government agencies and offices. Ensures that the business development strategy...CyberFull timeContract workCurrently hiringRemote workFlexible hours$71.2k - $166.1k
...management and engineering project management experience • Federal EHR (VA and/or DoD) engineering and deployment experience • Federal Cyber understanding/experience • Engineering experience with Oracle Health (Cerner) Applications/Platforms • Engineering experience...CyberTemporary workFlexible hours- ...and expand current solutions and services to other emerging markets such as energy and utilities, data centers and customers (e.g., cyber, digital solutions, management consulting, advisory services, GIS, energy). • Knowledge of and experience in growing digital solutions...CyberH1bFlexible hours
$71.4k - $151.9k
...job posts: Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from...CyberFull timeContract workTemporary workH1b$71.3k - $117k
...and service delivery. Prior experience managing programs that include call center, telephony, cloud/IT infrastructure sustainment, cyber security, and/or software application sustainment workstreams. Familiarity with ITIL-aligned service management, workforce...CyberContract workFor contractorsFor subcontractorWork at officeWorldwide$184.2k - $198k
...the World's AI Transformation Rubrik (RBRK), the Security and AI Operations Company, leads at the intersection of data protection, cyber resilience, and enterprise AI acceleration. Rubrik Security Cloud delivers complete cyber resilience by securing, monitoring, and...CyberLocal areaRemote work$15.68 - $71.3 per hour
...on the defense, security, and infrastructure markets. With nearly 75 years of experience, Parsons is uniquely qualified to deliver cyber/converged security, technology-based intellectual property, and other innovative services to federal, regional, and local government...CyberContract workFor contractorsFor subcontractorWork at officeLocal areaRemote workWorldwideFlexible hours$75k
Overview This role will have client facing responsibilities that encompass Application security and DevSecOps engineer skill sets. This role will be supporting DevSecOps tools including Splunk, Docker Pro, IBM Sterling Connect renewal, New Relic, Cloudbees, Symantec VIP...Permanent employmentWork experience placementLocal areaWorldwide$94.1k - $144.8k
The Database Administrator, Senior leads the design, implementation, and lifecycle management of enterprise database platforms that underpin mission‑critical systems in a highly regulated government environment. The role owns advanced performance tuning, capacity planning...Contract workWork experience placementWork at office$130k - $140k
Job Description Role: Manager, Security Operations Location: United States (Hybrid - Durham, NC) Department: Cybersecurity - Security Operations Reports to: Senior Director, Security Operations Role Overview The Manager, Security Operations is responsible...Full time$78.4k - $119.18k
The Database Administrator, Mid oversees the stability, performance, and security of enterprise databases that support mission‑critical systems in a highly regulated government environment. The role designs and refines database structures, indexing strategies, and capacity...Contract workWork experience placementWork at office
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Threat Hunter. Be the first to apply!


