Cyber Threat Hunter
$94.1k - $150kASM Research, An Accenture Federal Services Company
Position Overview
The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network, endpoint, and log data to identify malicious activity that may evade conventional security controls. This role establishes normal traffic and data-flow baselines, detects anomalies, develops threat hypotheses, and investigates adversary tactics, techniques, and procedures to strengthen cyber defense and incident response operations. This role directly supports a proactive SOC model by contributing to detection engineering, monitoring enhancements, automation development and continuous gap analysis to identify and mitigate emerging threats before they materialize.
Key Responsibilities
Conduct proactive threat hunting across networks, endpoints, and security datasets to identify, isolate, and help eradicate advanced threats before they impact operations.
Analyze logs from multiple sources, including packet captures, correlation engines, parsed security data, and endpoint telemetry, to detect suspicious behavior and validate threat activity.
Establish and maintain baseline patterns for normal traffic, system activity, and data flows to improve anomaly detection and investigative accuracy.
Collaborate closely with SOC analysts and detection engineers to recommend new alerts, analytics, and monitoring logic based on threat hunting findings, emerging trends, and identified visibility gaps.
Develop automation scripts and workflows (using SOAR platforms, Python, PowerShell, or similar tools) to streamline threat hunting activities, automate repetitive analytical tasks, and reduce detection and response time.
Research and track adversary tactics, techniques, and procedures (TTPs), developing technical hypotheses and investigative leads based on threat intelligence and observed behaviors.
Support incident response activities by creating incident documentation, follow-up actions, reporting criteria, and recommendations that improve overall response maturity and operational resilience.
Examine and characterize malware and cyber threats, including viruses, worms, bots, rootkits, and Trojan horses, to determine threat nature, scope, and potential impact.
Apply reverse engineering and binary analysis techniques using tools such as Ghidra and IDA Pro to support vulnerability research and understand malicious code behavior.
Required Qualifications
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field, or equivalent relevant experience.
4 years of experience in cybersecurity or a closely related technical security role.
Demonstrated ability to perform system administrator-level analysis across multiple platforms and operating systems in support of cyber investigations.
Strong analytical and problem-solving skills with the ability to identify, track, and assess adversary TTPs and suspicious activity.
Knowledge of intrusion detection methodologies, evidence preservation practices, and cyber defense and information security policies, procedures, and regulations.
Ability to support work in a U.S.-only staffing environment and satisfy any client-required background investigation or security requirements.
Preferred Qualifications
Relevant cybersecurity certifications such as GCDA, GNFA, CompTIA PenTest+ (Removed CISSP), CISM, or CompTIA CySA+.
Experience with reverse engineering, malware analysis, vulnerability research, and threat analysis in enterprise or government environments.
Familiarity with U.S. Army Corps of Engineers (USACE) IT policies and operational security requirements.
Experience preparing technical reports, incident summaries, and threat findings for stakeholders and operational leadership.
Job Specific Skills
Threat hunting and anomaly detection.
Log correlation and security event analysis.
Packet capture analysis and data parsing.
Malware analysis, reverse engineering, and binary analysis.
Threat intelligence analysis and TTP identification.
Incident response documentation and reporting.
Detection engineering collaboration and monitoring enhancement support.
Compensation Ranges
Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees.
EEO Requirements
It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.
All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment.
Physical Requirements
The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions.
Disclaimer
The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
$94,100 - $150,000
EEO Requirements
It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.
All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment.
$108.31k - $160k
...States Suitability/Public Trust Fully remote Information Technology Overview GovCIO is currently hiring for a remote Cyber Threat Analyst to support the US Courts. This position will be within United States and will be fully remote. Responsibilities...CyberFull timeCurrently hiringRemote workFlexible hours$224k - $337k
...The Principal Cyber Security Architect/Engineer will be responsible for leading the design and implementation of cutting-edge cybersecurity... .... You will be hands-on in fortifying defenses against emerging threats and acting as the subject matter expert for technical challenges...CyberTemporary workWork experience placementRemote workWorldwideFlexible hours$80.2k - $111.3k
...major incident handling while maintaining deep technical focus on threat containment and eradication. It also drives proactive... ...tools and service management platforms integrated with SOC and cyber defense functions. Certifications such as ITIL Foundation plus...CyberContract workWork experience placementWork at office$87.7k - $164k
...Ernst & Young Oman is seeking a Cyber Triage and Forensics Incident Analyst in Salem, Oregon. The role involves responding to security... ...and collaborating with IT and other teams to remediate security threats. Candidates should have a Bachelor's or Master's Degree in a relevant...Cyber$102.17k
...Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst, where you will operate at the intersection of... ...applications deployed in water environments are resilient against evolving threats. You will work closely with engineering and development teams...CyberH1b$100.2k - $164.1k
...Blending cutting-edge technologies, unique skill sets, and proven cyber counterintelligence strategies, SpearTip partners with our... ...profits. We are driven to protect our clients from the ever-changing threat actors and become the gold standard in detecting zero-day...CyberFull timeTemporary workApprenticeshipLocal areaRemote workVisa sponsorshipFlexible hours$60k
...enterprise security and compliance requirements. Execute directed cyber actions including network access restrictions, firewall and... ...Monitor and operate network security tools, supporting alert triage, threat detection, and initial response actions across network and...CyberContract workRemote work$87.7k - $164k
...Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider... ...Provide consultation and assessment on perceived security threats Maintain, manage, improve and update security incident process and...CyberSummer holidayLocal areaFlexible hours$76.4k - $138.6k
...Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider... ...role goes beyond traditional scanning by actively emulating threat actors, performing penetration testing and assessing the true impact...CyberSummer holidayLocal areaFlexible hours$87.2k - $142.7k
...Cyber Security Specialist 134805 SpearTip, a Company of Zurich is hiring a Cyber Security Specialist to join our Security Operations... ...capabilities, with a specific focus on Stellar Cyber, Identity Threat Detection and Response, and Network Detection and Response....CyberFull timeTemporary workApprenticeshipLocal areaRemote workVisa sponsorship$97.14k - $190.5k
...solutions within our Cybersecurity platforms in support of our Cyber Defense Organization. Enterprise Technology plays a critical... ...Suites) Strong understanding of network security, log analysis, threat detection, and incident response. Knowledge of RESTful APIs,...CyberImmediate startRemote workFree visaFlexible hours$106.8k - $194.8k
...will be responsible for implementing and managing Web Application Firewall (WAF) solutions to protect client applications from cyber threats. You will work within a team of cybersecurity professionals to establish effective security measures that safeguard web applications...CyberSummer holidayFlexible hours- ...Defender, CrowdStrike Falcon, Trellix, Splunk, and Zscaler. Lead threat hunting and vulnerability assessments to identify and mitigate... ...cybersecurity strategy and drive decisions. Identify gaps in cyber operations and implement improvements. Design and deliver...CyberHourly payPermanent employmentContract workLocal areaRemote work
- ...prepares formal written reports and analysis. The systems administrator will be fluent in industry best practices and standards, and cyber security best practices. Lead server life cycle efforts. Administer VMWare vSphere virtual environment. Assist in project...CyberFor contractorsLocal area
$59.81 per hour
...processes (e.g., methods for assessing and mitigating risk). Knowledge of cybersecurity and privacy principles. Knowledge of cyber threats and vulnerabilities. Either directly or in collaboration with MSP, train and manage staff. Analyze All-Source...CyberWork experience placement$104.8k - $192.2k
Location: Anywhere in Country At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world...CyberWork experience placementSummer holidayFlexible hours- ...areas covering artificial intelligence, cloud migration, custom software development, data analytics infrastructure & cloud solutions, cyber security services, etc. We make reasonable accommodations for clients and employees and we do not discriminate based on any...CyberRemote work
$40k
...assisting with containment, vulnerability management, and compliance activities. The role works under senior guidance to execute defined cyber actions, maintain incident documentation, support POA&M and ISVM tracking, and assist with patching, testing, and spill response....CyberContract workRemote work$125k - $144.06k
...- Integrity, Advocacy, Commitment, Inclusion, and Excellence - drive everything we do in support of our vision of a safe and secure cyber world. Our globally recognized, award-winning portfolio of certifications provide an independent and globally recognized endorsement...CyberWork experience placementWork at officeRemote workShift workNight shift$144.9k - $265.8k
Location: Anywhere in Country At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world...CyberWork experience placementSummer holidayFlexible hours$86.4k
...JOB SUMMARY This Position is the top investigator in the Cyber Fusion Center, capable of working any kind of incident, leading... ...and intrusion detection system [IDS] logs) to identify possible threats to network security. (10%) Perform cyber defense incident triage...CyberFor contractorsWork at officeLocal areaRemote work$124.2k - $186.2k
...and maintaining its reputation as a trusted leader in data and AI security. The SOC is the first to respond to cyber security incidents, report on cyber threats, and recommend changes needed to further protect the organization. What you'll do: Monitor and respond...CyberLocal areaRemote work- ...24x7 on-call rotation for production support, maintenance, housekeeping, and installs. Collaborate with Systems Administrators, Cyber Security, and Capacity Planning teams as needed. Diagnose problem areas quickly and propose solutions or workarounds. Prioritize...CyberHourly payContract workLocal areaRemote work
- ...Assurance Technical (IAT) Level II baseline certification A Bachelors Degree with Technical training related to Information Technology, Cyber Security, Computer Science, or related discipline Or a High School diploma/GED with Technical training related to Information...CyberFull timeContract workPart timeInterim roleLocal areaFlexible hours
- ...for profit/loss, operating income, revenue. Responsible for organic growth. Minimum Qualifications ~ Bachelor's Degree in IT, Cyber Security Business, Engineering, Management or a related field. An Associate's Degree and 10 years of experience may be substituted for...CyberContract workWork at office
$82.7k - $175.9k
...job posts: Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from...CyberTemporary workH1bRemote work$95k - $110k
...network devices. · Security Management: Implement and maintain security measures to protect hardware and infrastructure from cyber threats. · Capacity Planning and Performance Monitoring: Monitor system performance and plan for future capacity needs to support organizational...CyberContract workFor contractorsWork experience placementWork at office$99.2k - $211.1k
...job posts: Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from...CyberTemporary workH1b$71.4k - $151.9k
...job posts: Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from...CyberFull timeContract workTemporary workH1b$160.2k - $246.3k
...environments Collaborate with infrastructure and application teams to embed security into system architecture Conduct code reviews and threat modeling to identify and remediate vulnerabilities Build and maintain systems for monitoring, logging, and alerting on security...For contractorsLocal areaRemote workWork from homeRelocation packageFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Threat Hunter. Be the first to apply!

