Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Proactive Threat Hunter & Detection Engineer

$94.1k - $150k

ASM Research, An Accenture Federal Services Company

Position Overview The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network, endpoint, and log data to identify malicious activity that may evade conventional security controls. This role establishes normal traffic and data-flow baselines, detects anomalies, develops threat hypotheses, and investigates adversary tactics, techniques, and procedures to strengthen cyber defense and incident response operations. This role directly supports a proactive SOC model by contributing to detection engineering, monitoring enhancements, automation development and continuous gap analysis to identify and mitigate emerging threats before they materialize. Key Responsibilities Conduct proactive threat hunting across networks, endpoints, and security datasets to identify, isolate, and help eradicate advanced threats before they impact operations. Analyze logs from multiple sources, including packet captures, correlation engines, parsed security data, and endpoint telemetry, to detect suspicious behavior and validate threat activity. Establish and maintain baseline patterns for normal traffic, system activity, and data flows to improve anomaly detection and investigative accuracy. Collaborate closely with SOC analysts and detection engineers to recommend new alerts, analytics, and monitoring logic based on threat hunting findings, emerging trends, and identified visibility gaps. Develop automation scripts and workflows (using SOAR platforms, Python, PowerShell, or similar tools) to streamline threat hunting activities, automate repetitive analytical tasks, and reduce detection and response time. Research and track adversary tactics, techniques, and procedures (TTPs), developing technical hypotheses and investigative leads based on threat intelligence and observed behaviors. Support incident response activities by creating incident documentation, follow-up actions, reporting criteria, and recommendations that improve overall response maturity and operational resilience. Examine and characterize malware and cyber threats, including viruses, worms, bots, rootkits, and Trojan horses, to determine threat nature, scope, and potential impact. Apply reverse engineering and binary analysis techniques using tools such as Ghidra and IDA Pro to support vulnerability research and understand malicious code behavior. Required Qualifications Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field, or equivalent relevant experience. 4 years of experience in cybersecurity or a closely related technical security role. Demonstrated ability to perform system administrator-level analysis across multiple platforms and operating systems in support of cyber investigations. Strong analytical and problem-solving skills with the ability to identify, track, and assess adversary TTPs and suspicious activity. Knowledge of intrusion detection methodologies, evidence preservation practices, and cyber defense and information security policies, procedures, and regulations. Ability to support work in a U.S.-only staffing environment and satisfy any client-required background investigation or security requirements. Preferred Qualifications Relevant cybersecurity certifications such as GCDA, GNFA, CompTIA PenTest+ (Removed CISSP), CISM, or CompTIA CySA+. Experience with reverse engineering, malware analysis, vulnerability research, and threat analysis in enterprise or government environments. Familiarity with U.S. Army Corps of Engineers (USACE) IT policies and operational security requirements. Experience preparing technical reports, incident summaries, and threat findings for stakeholders and operational leadership. Job Specific Skills Threat hunting and anomaly detection. Log correlation and security event analysis. Packet capture analysis and data parsing. Malware analysis, reverse engineering, and binary analysis. Threat intelligence analysis and TTP identification. Incident response documentation and reporting. Detection engineering collaboration and monitoring enhancement support. Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. $94,100 - $150,000 EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment. #J-18808-Ljbffr ASM Research, An Accenture Federal Services Company

Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Proactive Threat Hunter & Detection Engineer in Washington DC vacancy
  • cFocus Software Incorporated seeks a Threat Hunt Lead to join our program supporting...  .... The successful candidate will lead proactive threat hunting operations, develop hypothesis...  ...efforts across threat intel, detection engineering, and incident response teams to strengthen... 
    Suggested
    Work at office

    cFocus Software Incorporated

    Washington DC
    1 day ago
  • $150k - $186.3k

    A global law firm is seeking a Senior IT Security Engineer specializing in Threat Response. This role involves proactively identifying and mitigating threats, collaborating with incident response teams, and analyzing security data. Candidates should have a strong understanding... 
    Suggested
    Remote job
    Flexible hours

    Orrick

    Washington DC
    4 days ago
  • A leading research lab in Maryland is seeking a Cyber Threat Analyst to support the Defensive Cyber Operations team in identifying and...  ...degree and 3-5 years of relevant experience, including anomaly detection and incident response. The role requires flexibility for on-... 
    Suggested
    Shift work

    Johns Hopkins Applied Physics Laboratory

    Laurel, MD
    3 days ago
  •  ...cFocus Software seeks a Mid Level Cyber Threat Hunter to join our program supporting US Courts in Washington...  ...is declared and provides a service that proactively searches for security incidents that would not normally be detected through automated alerting. The Threat Hunt... 
    Suggested
    Work at office
    Remote work

    cFocus Software Incorporated

    Washington DC
    2 days ago
  • $107.9k - $195.05k

     ...Modernization sector is looking for a Cyber Threat Hunter to support a Defensive Cyber...  ...slow" attacks that evade automated detection. Detection Engineering Pipeline: Partner with detection...  ...Utilize the MITRE ATT&CK framework to proactively search for Advanced Persistent... 
    Suggested
    Summer work
    Casual work
    Local area
    Remote work
    Shift work
    Night shift
    Rotating shift

    Leidos

    Washington DC
    4 days ago
  •  ...worldwide. Job Description Overview SOSi is seeking a Senior Threat Hunter to support proactive cyber defense activities in alignment with our customer....  ...sources to identify malicious activity, supporting detection and response efforts, and applying advanced analytical techniques... 
    Contract work
    Work at office
    Worldwide
    Monday to Friday
    Weekend work
    Afternoon shift

    SOSi

    Washington DC
    3 days ago
  •  ...bureaucracy. Title: Senior Threat Hunter Location: Washington, DC...  ...automated tools miss. You proactively hunt for Advanced Persistent...  ...hunt operations and improve detection coverage Write scripts in...  ...Intelligence), GREM (GIAC Reverse Engineering Malware), or GCFE/GCFA (... 
    Full time
    Work experience placement
    Flexible hours

    Revolutional

    Washington DC
    3 days ago
  • $85.1k - $161.7k

     ...there's nowhere like RSM. As a Senior Threat Hunter/SOC Analyst within RSM Defense, you...  ...risk context. You will also influence detection engineering and response automation by...  ...analyst focus on complex tradecraft, proactive improvements, and mentorship. Key Responsibilities... 
    Work experience placement
    Internship
    Local area

    RSM US LLP

    Washington DC
    3 days ago
  • MartinFed is seeking a SIEM Detection Engineer to develop, tune, and maintain detection content in Splunk ES for government missions. You will...  ...use cases aligned to MITRE ATT&CK, while incorporating threat intelligence and minimizing noise. Collaboration with analysts... 

    MartinFed

    Washington DC
    3 days ago
  • $140k - $150k

    SecurityScorecard is seeking an engineering counterpart to the STRIKE Threat Intelligence team. The successful candidate will transform research outputs into production-ready artifacts, such as detection rules and distribution feeds. This role requires 5 to 8 years of engineering... 

    SecurityScorecard

    Washington DC
    3 days ago
  •  ...analytics firm is seeking a Junior Cyber Risk Data Engineer/Analyst in Arlington, VA. This role emphasizes data...  ...manage risk assessment data, connect with external threat databases, and assist in proactive risk detection. The ideal candidate should possess 1-3 years of experience... 

    Technomics, Inc.

    Arlington, VA
    3 days ago
  • SOSi is seeking a Senior Threat Hunter in Washington, D.C. This role involves conducting threat hunting operations and analyzing data to identify malicious activities. The ideal candidate should have at least five years of experience in data hunting and a bachelor's degree... 
    Weekend work
    Afternoon shift

    SOSi

    Washington DC
    3 days ago
  • Anthropic is seeking a Threat Intelligence Engineer to build scalable threat discovery infrastructure and data pipelines. You will integrate external data sources, develop detection systems for automated lead generation, and create internal tooling that scales investigators... 
    Remote job

    Anthropic

    Washington DC
    3 days ago
  • A cybersecurity firm is looking for a Mid Level Cyber Threat Hunter to support US Courts in Washington, DC. The position requires 3-5 years...  ...incident response, analyzing vulnerabilities, and conducting proactive threat hunts using various tools, including Splunk and... 
    Remote job

    cFocus Software Incorporated

    Washington DC
    3 days ago
  •  ..., career and customer-oriented Cyber Threat Hunter to join our team in Mclean, VA . The...  ...technical background and knowledge to proactively detect, investigate, and mitigate cyber...  ...information security, computer science, engineering, or other closely related IT discipline... 
    Work at office
    Local area

    ManTech

    Mc Lean, VA
    1 day ago
  •  ...performing the following duties: Assisting in the execution of threat hunting activities across IT and Operational Technology (OT)...  ...events and alerts from multiple enterprise systems (e.g., Intrusion Detection System (IDS), security event logs, endpoint artifacts, service... 

    US Cybersecurity and Infrastructure Security Agency

    Arlington, VA
    2 days ago
  • SIXGEN is seeking an Advanced Threat Hunter to proactively identify, investigate, and disrupt advanced cyber threats before they impact enterprise operations. You will hunt across endpoints, networks, cloud environments, and security telemetry to reveal TTPs evading standard... 
    Remote job

    SIXGEN

    Washington DC
    19 hours ago
  •  ...Cybersecurity Threat HunterSecurity OperationsUS Exempt...  ...Cybersecurity Threat Hunter Security Operations...  ...a highly skilled and proactive Cybersecurity Threat...  ...threats and developing detection strategies to protect...  ...Mentor and guide tier 1 engineers, fostering skill... 
    Full time

    University of Maryland Global Campus

    Adelphi, MD
    a month ago
  • $85.1k - $161.7k

    RSM US LLP is seeking a Senior Threat Hunter/SOC Analyst in Washington, D.C. This role involves leading complex security investigations,...  ...Candidates should possess strong experience in SOC operations, threat detection, and incident management. The ideal candidate should have a... 

    RSM US LLP

    Washington DC
    3 days ago
  •  ...an empowered workforce as an engine to drive its customers' missions...  .... Job Overview The SIEM Detection Engineer is responsible for developing...  ...that identifies security threats within government agencies....  ..., and alerts in SPL to proactively detect security threats, anomalies... 
    Work at office
    Local area

    MartinFed

    Washington DC
    3 days ago
  •  ...over bureaucracy. Senior Threat Hunter Analyst Location:...  ...continuous monitoring, intrusion detection, threat hunting, incident response...  .... The core challenge: proactively hunting adversary activity...  ...), GREM (GIAC Reverse Engineering Malware), CySA+, or equivalent... 
    Full time
    Work experience placement
    Local area
    Remote work
    Flexible hours
    Shift work

    Revolutional, LLC

    Washington DC
    5 days ago
  • Revolutional is looking for a Senior Threat Hunter to proactively search for threats that automated tools miss. You will utilize analytical skills and advanced data techniques to hunt for APTs across various network environments. The ideal candidate will have a minimum... 
    Remote job

    Revolutional

    Washington DC
    3 days ago
  • ManTech seeks a motivated Cyber Threat Hunter to join our team in McLean, VA. The role involves leveraging technical expertise to detect and mitigate cyber threats, utilizing methodologies like MITRE ATT&CK and conducting threat hunts based on internal data. Qualifications... 

    ManTech

    Mc Lean, VA
    4 days ago
  •  ...Specialist (INFOSEC) at GS-2210-13/14 in Arlington, VA. The role focuses on handling complex IT security work, incident triage, and threat intelligence coordination for national significance incidents. The position emphasizes coordinating with leadership and other... 

    US Cybersecurity and Infrastructure Security Agency

    Arlington, VA
    3 days ago
  •  ...seeking an Information Technology Cybersecurity Specialist (INFOSEC) at GS-11/12/13. The role focuses on IT-related competencies, threat hunting, incident response coordination, and cross-functional teamwork to safeguard federal networks. Applicants must meet basic IT... 

    US Cybersecurity and Infrastructure Security Agency

    Arlington, VA
    3 days ago
  •  ...focuses on monitoring, triaging, and responding to cybersecurity threats. The ideal candidate will possess a strong technical...  ...passion for operational cybersecurity, working closely with IT and engineering teams. The SOC Analyst II will handle security incidents, conduct... 

    CHAOS Industries

    Washington DC
    3 days ago
  •  ...Job Description Job Description cFocus Software seeks a Detection Engineer to join our program supporting the Administrative Office...  ...Technology, or a related field ~3+ years’ experience conducting proactive threat hunting or adversary emulation.  ~2+ years demonstrated... 
    Work at office

    cFocus Software Incorporated

    Washington DC
    3 days ago
  • $91.3k - $221.1k

     ...and the government forward! Responsibilities Design, engineer, and implement security detection initiatives under the cybersecurity team lead. Develop...  ...CK framework for detection mapping Bonus If You Have Threat hunting and automation experience Familiarity with cloud... 
    Work experience placement
    Live in
    Local area

    Accenture Federal Services

    Arlington, VA
    3 days ago
  • $145k - $192.5k

    Koitecc Solutions is looking for a Cyber Threat Defense AI Security Senior Engineer to integrate AI technologies into cyber defense. You will lead teams in implementing AI for threat detection, oversee custom model development, and act as a mentor for junior engineers.... 

    Koitecc Solutions

    Washington DC
    1 day ago
  •  ...Defensive Security Analyst to ensure the security of personnel and infrastructure worldwide. You will manage crucial SOC systems, develop detection strategies, and create comprehensive reports for varied audiences. The ideal candidate will have hands-on experience in SOC... 
    Worldwide

    Palantir Technologies

    Washington DC
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Proactive Threat Hunter & Detection Engineer. Be the first to apply!