Cyber Threat Hunt Lead
Gritter Francona
Gritter Francona is looking for a Cyber Threat Hunt Lead to support a potential project with the Department of Homeland Security. The Threat Hunt Lead will build and guide a proactive threat hunting capability for the Department of U.S. Customs and Border Protection (CBP). The Threat Hunt Lead will direct a specialized team in proactively searching for malicious activity across CBP networks that evades traditional security solutions. This role requires an offensive mindset, deep knowledge of attacker TTPs, and expert-level skills with SIEM and endpoint management tools. The Threat Hunt Lead will be responsible for developing hunt hypotheses, executing hunt missions, and coordinating with the SOC to create new detections based on your findings.
Key Responsibilities:
• Lead the CTH team to proactively and iteratively conduct threat hunting efforts against CBP networks, systems, and high value assets to detect and isolate advanced threats.
• Utilize threat models and Cyber Threat Intelligence to formulate hypotheses about attacker activity on CBP networks and systems to investigate during formal hunt missions.
• Propose corrective actions and inform necessary parties of security issues, reportable offenses, or cybersecurity best practices.
• Work with the CBP SOC to create new security content, including signatures and detection alerts, resulting from hunt missions and Purple Team engagements.
• Lead the Cyber Threat Hunt team to report significant findings to leadership and coordinate with asset owners to deconflict findings.
Requirements
- A minimum of five (5) years of experience as a Tier III senior cyber threat hunt analyst performing threat analysis, technical analysis, and network asset traversal.
- A minimum of five (5) years of hands-on experience, including recent experience with network-based security monitoring using cybersecurity capabilities.
- A strong background in host and network-based forensics, intrusion detection, malware identification, and security content development.
- Deep knowledge of and experience with security information and event management (SIEM) and networked-device management tools such as Splunk and Tanium.
- Experience interpreting scripts (e.g., VB scripts, Python, C++) to support cyber threat detection.
- Certified Ethical Hacker (CEH) or one of the following: DoD 8570 IAT Level II or IAM Level I or CSSP Analyst / Incident Responder.
Benefits
- Health Care Plan (Medical, Dental & Vision)
- Retirement Plan (401k, IRA)
- Life Insurance (Basic, Voluntary & AD&D)
- Paid Time Off (Vacation, Sick & Public Holidays)
- Short Term & Long Term Disability
- Training & Development
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Cyber Threat Hunt Lead in Ashburn, VA vacancy
- ...A cybersecurity firm is seeking a Cyber Defense Forensics Lead to manage forensics and insider threat operations supporting U.S. Customs and Border Protection. The candidate will lead a team to conduct investigations, monitor data loss prevention strategies, and provide...Cyber
Gritter Francona
Ashburn, VA4 days ago - 4305 Cyber Threat Intelligence Team Lead 4305 | Top Secret Job Description: OVERVIEW: We are looking for a talented Cyber Threat Intelligence Team Lead to join our team and support our mission critical customer in Reston, VA. This position leads a team...CyberContract work
Procession Systems
Reston, VA1 day ago - ...Job Title Cybersecurity Lead - C Job Description The most security-conscious... ...can bring to our solutions in the areas of cyber, cloud and enterprise security. Be a part... ...policies, regulations, and emerging threats. Job Requirements Qualifications:...CyberFull timeRemote work
Telos Corporation
Ashburn, VA6 days ago - 4257 Cyber Threat Deputy Lead 4257 | Top Secret Job Description: OVERVIEW: We are seeking a Cyber Threat Deputy Team Lead to join our team and support our mission critical customer in Reston, VA. As our Cyber Threat Deputy Team Lead, you will supervise...CyberTemporary work
Procession Systems
Reston, VA4 days ago - ...firm with a focus on high-profile, high-threat, private and public-sector customers who... ...The Perks: As recognized members of the Cyber Elite, we work together in partnership to... ...detection, incident investigation and threat hunting with hands-on development of SIEM use...CyberContract workRemote work
ShorePoint Inc
Herndon, VA5 days ago - ...MANTECH seeks a motivated, career, and team-oriented Cyber Threat Lead to support a DHS customer in Chandler, AZ OR the National... ...Incorporate Data Science modeling and machine learning into daily hunt operations. Identify and investigate endpoint, network,...CyberWork at officeLocal area
ManTech International Corporation
Chantilly, Loudoun County, VA1 day ago - ...range of specializations, from threat intelligence to information... ...inclusive hiring industry from leading thinkers, grow their professional... ...DNS, etc) to track malicious cyber actors, their infrastructure... ...security incident management, threat hunting, and data analytics...CyberInternshipSummer internshipRemote workVisa sponsorshipWork visa
Palo Alto Networks
Reston, VA1 day ago - ...PAE Government Services Inc. is looking for a Senior Cyber Threat Analyst to support the Department of Energy. This role involves conducting cyber investigations, analyzing security systems, and working with federal agencies to enhance cyber defense. The ideal candidate...Cyber
PAE Government Services Inc.
Chantilly, Loudoun County, VA3 days ago - ...Division Lead - Cybersecurity Integration Location: Reston, VA Clearance: Candidate must... ...integration, monitoring, reporting and cyber network defense coordination for all IC elements... ...real-world scenarios and emerging threats into training and exercise events. About...CyberFor contractorsLocal area
IndraSoft
Reston, VA3 days ago - ...to enhance defense and mission capabilities, addressing threats across physical, electronic, cyber, and communications security for commercial and U.S.... ...roles. Job Summary: As a senior technician, the Lead Security Systems Technician is responsible for independent...CyberFull timeNight shift
Active Security Consulting
Sterling, VA5 days ago - ...Draper Labs is seeking a Lead for Science and Technology efforts focused on Microelectronics, AI/ML, and Cybersecurity. Located in Reston, Virginia, this role involves aligning technology development with strategy, managing a team, and engaging with external programs...Cyber
Draper Labs
Reston, VA4 days ago $152.2k - $243.7k
...incident response teams to defend the company against evolving cyber threats. If you would like to join a company where security is truly... ...including Cyber Defense and Engineering. Perform proactive threat hunting to identify and mitigate potential threats before they can...CyberWork experience placementWork at officeLocal areaVisa
Ashburn, VA2 days ago$96.5k - $179.5k
...mind, our employees deliver end-to-end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title: Lead, schedule Integrator Job Code: 36490 Job Location: Ashburn, VA Job Schedule: 9/80:...CyberContract workWork at officeLocal areaFlexible hoursL3Harris Technologies
Ashburn, VA16 days ago- ...clearance prior to consideration The Continuous Monitoring Cyber Systems Engineer Technical Specialist provides support to the... ...Cyber Security. Daily tasks include, but are not limited to: Leads the Continuous Monitoring (ConMon) team in policy development,...CyberFull time
RDR
Chantilly, Loudoun County, VA5 days ago $150k - $165k
...Cybersecurity Lead/ISSM Herndon, VA or Colorado Springs, CO Dark Wolf is looking for a Cybersecurity Lead/Information System Security... .../Ansible, Github. ~ At least one (1) of the following cyber security certifications: CASP+ CE, CSSLP, CISSP ~ Strong experience...CyberContract workDark Wolf Solutions
Herndon, VA1 day ago- ...exploitation techniques. Leads penetration tests, mentoring junior... ...staying abreast of emerging threats. Possess extensive... ...experience. Experience in cyber security with a focus on red teaming... ...testing, or threat hunting. Why Join Cyber Defense Technologies...CyberWork experience placement
Cyber Defense Technologies
Chantilly, Loudoun County, VA4 days ago - ...Cyber Security Analyst Creates cyber-intelligence tools / methods and performs research... ...for application design. Leads the investigation of complex computer and... ...information security incident, damage and threat assessment programs. Responsible for the...CyberContract workWork at office
ASM Research
Ashburn, VA1 day ago - ...Principal Threat Analysis Engineer Information Technology - Computer Software Job Description Principal Threat Analysis Engineer... ...Responsibilities Conduct project-based research into cyber attacks, working with internal analysts to produce intelligence...Cyber
- ...Lead Systems Architect Acclaim Technical Services, founded in 2000, is a leading cyber operations, intelligence solutions and operations, network infrastructure, engineering and business enablement and enterprise operations company supporting a wide range of U.S. Federal...Cyber
Acclaim Technical Services
Chantilly, Loudoun County, VA4 days ago - ...Security Operations Center (SOC) is a U.S. Government program responsible for preventing, identifying, containing, and eradicating cyber threats to CBP networks through continuous monitoring, intrusion detection, and protective security services for CBP information systems...CyberWork at office2 days per week
Fairygodboss
Ashburn, VA3 days ago - ...Language Enabled Cyber Threat Analyst With Mandarin Chinese Skills Acclaim Technical Services, founded in 2000, is a leading language and intelligence services company supporting a wide range of U.S. Federal agencies. We are an Employee Stock Ownership Plan (ESOP)...Cyber
Acclaim Technical Services
Reston, VA2 days ago - ...Gritter Francona is looking for a Cyber Defense Forensics Lead to support a potential project with the Department of Homeland Security. The Forensics... ...Lead will manage and direct the forensics and insider threat operations supporting U.S. Customs and Border Protection (...CyberTemporary work
Gritter Francona
Ashburn, VA12 days ago - ...dynamic and experienced executive with keen business acumen to lead business development for the Department of Justice account. The... ...and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are...CyberWork at office
SAIC
Reston, VA2 days ago - ...This position will be based at Reston, VA Lead a team of four FTE in the installation, operation and maintenance of the Xacta... ...integration support for X360 and Xacta IO. Integrates 3rd party cyber/enterprise security applications and systems via API into Xacta...Cyber
Elite Government Strategy
Reston, VA1 day ago - ...Nightwing provides technically advanced full-spectrum cyber, data operations, systems integration and intelligence mission support services... ..., defense, civil, and commercial markets. Job Title: Lead Systems Architect Location: Sterling, VA Clearance: TS/SCI...CyberContract work
Nightwing
Sterling, VA10 days ago $100k - $150k
...(CSOC) with advanced skillsets in cyber security, to develop and operate cyber... ..., Incident Response, Cyber Hunt, Forensics, Malware Analysis, and Cyber Threat Intelligence (skills in more than... ...engineer, experience as a technical team lead within the SOC, and operations...CyberContract workTemporary workLocal areaRemote workFlexible hoursTotal System Technologies
Reston, VA1 day ago- ...Insider Threat Analyst Lead We are looking for an Insider Threat Analyst Lead for potential upcoming work. This would be part of an opportunity for our partner to expand their footprint within a Federal IT sector. Requirements ~ US Citizenship ~ Ability...
NewGen Technologies (Maryland)
Herndon, VA4 days ago - ...can bring to our solutions in the areas of cyber, cloud and enterprise security. Be a... ...policies, guidelines, and standards. o Lead the development and execution of Plans of... ...initiatives and projects. Incident Response and Threat Management: o Support incident...CyberFull timeWork experience placement
Telos Corporation
Ashburn, VA8 days ago - ...solutions, ensuring real-time monitoring, threat detection, and effective incident... ...Engineer, Security Automation Engineer, Cyber Defense Engineer, Network Security Engineer... ...platforms Experience with advanced threat hunting Understanding of compliance standards...CyberTemporary workFor contractorsImmediate startFlexible hours
Cymertek
Chantilly, Loudoun County, VA4 days ago - ...Cyber Network Defense Analyst Contract personnel provide front... ...response (DFIR) and proactively hunting for malicious cyber activity.... ...information systems, and networks from threats. CNDAs review data collected... ...cyber defense analysis using leading edge technologies and industry...CyberContract workLocal areaImmediate start
NewGen Technologies (Maryland)
Herndon, VA4 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Threat Hunt Lead. Be the first to apply!
