Cyber Threat Hunter (TS/SCI Clearance Required)

Cyber Threat Hunter (TS/SCI Clearance Required) Trellix is a global company redefining the future of cybersecurity. The focus of this role is to develop and deliver detailed IT solutions through consulting project activities, from client identification to final invoicing. The position requires advanced threat hunting skills, the ability to craft and refine Tactics, Techniques, and Procedures (TTPs), and strong documentation and cross‑functional coordination to enhance security policies, tools, and architecture. Role Overview

• Work location: Fort Belvoir, VA (on‑site) with up to 25% travel
• Clearance required: TS/SCI
• Full‑time position in a classified environment.

Responsibilities Manage client engagements from initiation through completion and invoicing. Consult on system architecture, hardware/software specifications, implementation, testing, training, and deployment of security solutions. Create end‑of‑engagement reports and detailed threat‑hunting plans, briefings, and analyses. Assist in vulnerability analysis, incident response, malware removal, and remediation. Develop and maintain intellectual capital within Solution Services. Identify and propose product and service improvements and new client opportunities. Conduct training and knowledge sharing with team members and customers. Support cost and schedule monitoring, proposal generation, and estimate development. Participate in sales and proposal presentations as needed. Candidate Skills Deep understanding of cyber threats, attack vectors, detection capabilities, and countermeasures. Experience with security operations center monitoring and incident response. Skilled in analysis of configurations, risk assessment, and malware removal. Proficient with Trellix Endpoint Security platforms (ENS, TIE, DXL, DLP, HX, IVX). Experience with Windows, macOS, Linux hardening and artifact analysis. Proficient in at least one scripting language (Python, PowerShell, Go, C#). Experience integrating response and orchestration tools (SIEM, SOAR, XDR). Strong knowledge of TCP/IP protocols and packet analysis tools. Experience with virtualization (VMware, Nutanix) and cloud services (AWS, Azure). Ability to author formal reports, architecture designs, and best‑practice white papers. Required Qualifications 5+ years of threat hunting or equivalent federal government enterprise capability. Current adjudicated Secret clearance and eligibility for TS/SCI clearance. BA/BS with 4+ years of specialized experience or AA/AS with 6+ years, or major certification with 8+ years. Active DoD 8570 or DoD 8140 cybersecurity certification. Advanced proficiency in Microsoft Office Suite. Preferred Qualifications Knowledge of DoD IT RMF, USCYBERCOM, IC, and JFHQ‑DoDIN. MCSA – Windows Server 2016/2019. MCSA – SQL 2016 Database Administration. Experience with Microsoft SCCM and automated reporting tools. Adaptability to changing operational needs. Understanding of DoD and federal government agency standards. Experience with federal government and DoD IT security requirements. Benefits and Perks Retirement plans Medical, dental, and vision coverage Paid time off Support for community involvement EEO Statement Trellix is an equal opportunity employer and prohibits discrimination and harassment based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation, or any other legally protected status. #J-18808-Ljbffr Trellix