Senior AI-Centric Threat Hunter

Senior AI-Centric Threat Hunter

SimSpace serves as an AI Proving Ground where organizations can confidently train, test, and outmaneuver adversaries in any environment. Trusted by allied governments, militaries, enterprises, and research institutions worldwide, SimSpace enables adaptive, AI-ready defenses that stay ahead of evolving threats. Founded in 2015 by experts from U.S. Cyber Command and MIT Lincoln Laboratory, the platform unifies training, testing, and validation in a realistic, live-fire simulation—helping teams evaluate security investments, optimize performance, and compress cyber readiness cycles from months to days.

We are looking for a highly motivated Cybersecurity Professional to support mentorship and assessment of global security teams in basic to advanced cybersecurity skill areas. The ideal candidate has a strong technical background, is enthusiastic, is good at problem solving, has a strong desire to learn, prefers to be hands-on technically, and constantly strives for excellence.

The Senior AI-Centric Threat Hunter will be part of a team developing methodologies of incorporating AI agents into cybersecurity workflows, designing experiments to help develop/test AI agents and models, delivering instructional content to customers, and facilitating a variety of Blue Team exercises for SimSpace and our customers. When facilitating exercises, you will be responsible for teaching security concepts, demonstrating practical/hands-on use of open source and commercial security tools; referencing both well established and cutting edge techniques that Cybersecurity Incident Response Teams might use to effectively defend their networks from advanced cyber threats.

What will you be doing as a Senior AI-Centric Threat Hunter at SimSpace?

• Lead an internal initiative to research and integrate candidate agentic capabilities into test environments
• Serve as a consultant to customers looking to integrate agentic capabilities into their cybersecurity enterprise in how to identify, integrate and test capabilities prior to deployment
• Keep up with industry evolution around AI and cybersecurity operations reviewing publications and standards
• Bring world class mentorship of advanced threat hunting tactics and strategy for our global clients and international organizations.
• Utilize years of Blue Teaming experience to establish parsing rules, dashboards, and tuning of numerous enterprise security tools in our cyber range platform to exceed client goals and objectives.
• Work with our range operations team to develop toolsets and scenarios within a cybersecurity range to model real-world threat defense scenarios.
• Utilize foresight and awareness of overall business priorities when dealing with competing requirements and needs from across the organization in order to build consensus and drive results.
• Takes initiative in day-to-day tasks, leads projects, and mentors other team members.
• Navigate and work effectively across a complex, geographically dispersed organization.
• Support assessment of customer security teams and customer events (this means the role will require national and international travel estimated up to 25-30%).

What are the qualifications to apply? To be successful as a Senior AI-Centric Threat Hunter on SimSpace's Evaluation Team, you need to have:

• Demonstrated proficiency in AI/ML engineering, including practical application and experimentation with AI agents, LLM APIs.
• Possess a deep understanding of AI agents, specializing in the orchestration of agent decision loops, tool access frameworks, and memory systems optimized for threat hunting and proactive security operations.
• Architecting RAG Systems: Hands-on experience designing and deploying Retrieval-Augmented Generation (RAG) pipelines to ground LLMs in internal threat intelligence, historical incident data, and enterprise security policies while eliminating hallucinations.
• Advanced proficiency in Python and standard data science/AI libraries, alongside strong scripting skills for data manipulation (Pandas, Numpy).
• Familiarity with open-source AI ecosystems (Hugging Face) and frameworks for running local, privacy-safe LLMs (Ollama, vLLM).
• 6+ years of experience in a technical role in the areas of Security Operations, Incident Response, Detection Engineering, Offensive Security/Red Team, or Cyber Threat Intelligence.
• Experience analyzing host, network, and application telemetry for indicators of attack across the stages of the cyber kill chain.
• Direct experience working with very large datasets and log analysis tools including but not limited to: Splunk, Elastic, Python, Pandas, SQL, Hadoop, Hue.
• Ability to apply Cyber Threat Intelligence through enrichment, correlation, and attribution.
• Experience with setup and/or troubleshooting of security stacks.
• Familiarity with offensive security strategies and assessment methodology.
• Experience explaining threat hunt objectives to mixed technical and non-technical audiences and ability to communicate associated risk by distilling complex content into digestible information.
• Hands-on technical experience and ability to demonstrate hunting for indicators of compromise in numerous enterprise scale EDR and SIEM tools to include Splunk, Elastic, Crowdstrike, and many other major vendors.
• Previous experience performing digital forensics or incident response on major security incidents.
• Demonstrated self-starter with a constant desire to help others improve and build the team.

We're proud to offer a competitive and comprehensive package designed to support your well-being, growth, and success:

• Compensation. Base salary range: $135,000 - $200,000 reflecting our confidence in your expertise and impact, with the opportunity for bonuses tied to individual and company performance.
• Health & Wellness. Comprehensive medical, dental, and vision benefits, plus savings plans—coverage starts on day one!
• Mental Health Support. Access to company-paid counseling, coaching, and resources for you and your family through Spring Health.
• Financial Well-Being. Plan for your future with a 401(k)-retirement savings plan featuring a company match.
• Flexible Time Off. Take the time you need with unlimited vacation and dedicated health & wellness days. SimSpace provides flexible solutions to meet the diverse work-life needs of team members.
• Parental Leave. Paid leave plans to support you and your loved ones during life's most important moments.
• Ownership Opportunities. Equity stock options at hire, with annual performance-based grants—become an invested stakeholder in our shared success.
• Referral Rewards. Earn $1,500–$3,500 for every qualified hire through our employee referral program.
• Peloton Interactive Wellness Program. Full- and partial- subsidized membership plans and equipment discounts to help you reach your personalized fitness goals.
• Continuous Learning. Access a LinkedIn Learning membership to prioritize your personal and professional development.
• Social Connections. Monthly reimbursements for meaningful connections with teammates through our SocialSpace Community.
• Extra Perks. Legal plan coverage, pet insurance, wellness reimbursements, and more to simplify life's details.

SimSpace is an Equal Opportunity Employer: In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.

SimSpace is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws. We are committed to providing an inclusive and welcoming environment for all members of our staff, clients, volunteers, subcontractors, vendors, and clients.

Research shows that women and people from underrepresented groups only apply to jobs if they meet all of the qualifications. However, no one ever meets 100% of the qualifications. SimSpace encourages you to break that statistic and to apply. We look forward to your application!

We also consider qualified applicants regardless of criminal histories, in accordance with applicable law. We are committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need assistance or accommodation due to a disability, please contact View email address on click.appcast.io.

SimSpace does not accept unsolicited resumes from employment agencies.

Actual compensation for the position is based on a variety of factors, including, but not limited to affordability, skills, qualifications and experience, and may vary from the range.