Proactive Threat Hunter & Detection Engineer
$94.1k - $150kASM Research, An Accenture Federal Services Company
Position Overview The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network, endpoint, and log data to identify malicious activity that may evade conventional security controls. This role establishes normal traffic and data-flow baselines, detects anomalies, develops threat hypotheses, and investigates adversary tactics, techniques, and procedures to strengthen cyber defense and incident response operations. This role directly supports a proactive SOC model by contributing to detection engineering, monitoring enhancements, automation development and continuous gap analysis to identify and mitigate emerging threats before they materialize. Key Responsibilities Conduct proactive threat hunting across networks, endpoints, and security datasets to identify, isolate, and help eradicate advanced threats before they impact operations. Analyze logs from multiple sources, including packet captures, correlation engines, parsed security data, and endpoint telemetry, to detect suspicious behavior and validate threat activity. Establish and maintain baseline patterns for normal traffic, system activity, and data flows to improve anomaly detection and investigative accuracy. Collaborate closely with SOC analysts and detection engineers to recommend new alerts, analytics, and monitoring logic based on threat hunting findings, emerging trends, and identified visibility gaps. Develop automation scripts and workflows (using SOAR platforms, Python, PowerShell, or similar tools) to streamline threat hunting activities, automate repetitive analytical tasks, and reduce detection and response time. Research and track adversary tactics, techniques, and procedures (TTPs), developing technical hypotheses and investigative leads based on threat intelligence and observed behaviors. Support incident response activities by creating incident documentation, follow-up actions, reporting criteria, and recommendations that improve overall response maturity and operational resilience. Examine and characterize malware and cyber threats, including viruses, worms, bots, rootkits, and Trojan horses, to determine threat nature, scope, and potential impact. Apply reverse engineering and binary analysis techniques using tools such as Ghidra and IDA Pro to support vulnerability research and understand malicious code behavior. Required Qualifications Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field, or equivalent relevant experience. 4 years of experience in cybersecurity or a closely related technical security role. Demonstrated ability to perform system administrator-level analysis across multiple platforms and operating systems in support of cyber investigations. Strong analytical and problem-solving skills with the ability to identify, track, and assess adversary TTPs and suspicious activity. Knowledge of intrusion detection methodologies, evidence preservation practices, and cyber defense and information security policies, procedures, and regulations. Ability to support work in a U.S.-only staffing environment and satisfy any client-required background investigation or security requirements. Preferred Qualifications Relevant cybersecurity certifications such as GCDA, GNFA, CompTIA PenTest+ (Removed CISSP), CISM, or CompTIA CySA+. Experience with reverse engineering, malware analysis, vulnerability research, and threat analysis in enterprise or government environments. Familiarity with U.S. Army Corps of Engineers (USACE) IT policies and operational security requirements. Experience preparing technical reports, incident summaries, and threat findings for stakeholders and operational leadership. Job Specific Skills Threat hunting and anomaly detection. Log correlation and security event analysis. Packet capture analysis and data parsing. Malware analysis, reverse engineering, and binary analysis. Threat intelligence analysis and TTP identification. Incident response documentation and reporting. Detection engineering collaboration and monitoring enhancement support. Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. (For example, "light office duties' or "lifting up to 50 pounds" or "some travel" required.) Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. $94,100 - $150,000 EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, veteran status, disability, gender identity, or age. All decisions on employment are made to abide by the principle of equal employment. #J-18808-Ljbffr ASM Research, An Accenture Federal Services Company
- cFocus Software Incorporated seeks a Threat Hunt Lead to join our program supporting... .... The successful candidate will lead proactive threat hunting operations, develop hypothesis... ...efforts across threat intel, detection engineering, and incident response teams to strengthen...SuggestedWork at office
$150k - $186.3k
A global law firm is seeking a Senior IT Security Engineer specializing in Threat Response. This role involves proactively identifying and mitigating threats, collaborating with incident response teams, and analyzing security data. Candidates should have a strong understanding...SuggestedRemote jobFlexible hours- A leading research lab in Maryland is seeking a Cyber Threat Analyst to support the Defensive Cyber Operations team in identifying and... ...degree and 3-5 years of relevant experience, including anomaly detection and incident response. The role requires flexibility for on-...SuggestedShift work
- ...cFocus Software seeks a Mid Level Cyber Threat Hunter to join our program supporting US Courts in Washington... ...is declared and provides a service that proactively searches for security incidents that would not normally be detected through automated alerting. The Threat Hunt...SuggestedWork at officeRemote work
$107.9k - $195.05k
...Modernization sector is looking for a Cyber Threat Hunter to support a Defensive Cyber... ...slow" attacks that evade automated detection. Detection Engineering Pipeline: Partner with detection... ...Utilize the MITRE ATT&CK framework to proactively search for Advanced Persistent...SuggestedSummer workCasual workLocal areaRemote workShift workNight shiftRotating shift- ...worldwide. Job Description Overview SOSi is seeking a Senior Threat Hunter to support proactive cyber defense activities in alignment with our customer.... ...sources to identify malicious activity, supporting detection and response efforts, and applying advanced analytical techniques...Contract workWork at officeWorldwideMonday to FridayWeekend workAfternoon shift
- ...bureaucracy. Title: Senior Threat Hunter Location: Washington, DC... ...automated tools miss. You proactively hunt for Advanced Persistent... ...hunt operations and improve detection coverage Write scripts in... ...Intelligence), GREM (GIAC Reverse Engineering Malware), or GCFE/GCFA (...Full timeWork experience placementFlexible hours
$85.1k - $161.7k
...there's nowhere like RSM. As a Senior Threat Hunter/SOC Analyst within RSM Defense, you... ...risk context. You will also influence detection engineering and response automation by... ...analyst focus on complex tradecraft, proactive improvements, and mentorship. Key Responsibilities...Work experience placementInternshipLocal area- MartinFed is seeking a SIEM Detection Engineer to develop, tune, and maintain detection content in Splunk ES for government missions. You will... ...use cases aligned to MITRE ATT&CK, while incorporating threat intelligence and minimizing noise. Collaboration with analysts...
$140k - $150k
SecurityScorecard is seeking an engineering counterpart to the STRIKE Threat Intelligence team. The successful candidate will transform research outputs into production-ready artifacts, such as detection rules and distribution feeds. This role requires 5 to 8 years of engineering...- ...analytics firm is seeking a Junior Cyber Risk Data Engineer/Analyst in Arlington, VA. This role emphasizes data... ...manage risk assessment data, connect with external threat databases, and assist in proactive risk detection. The ideal candidate should possess 1-3 years of experience...
- SOSi is seeking a Senior Threat Hunter in Washington, D.C. This role involves conducting threat hunting operations and analyzing data to identify malicious activities. The ideal candidate should have at least five years of experience in data hunting and a bachelor's degree...Weekend workAfternoon shift
- Anthropic is seeking a Threat Intelligence Engineer to build scalable threat discovery infrastructure and data pipelines. You will integrate external data sources, develop detection systems for automated lead generation, and create internal tooling that scales investigators...Remote job
- A cybersecurity firm is looking for a Mid Level Cyber Threat Hunter to support US Courts in Washington, DC. The position requires 3-5 years... ...incident response, analyzing vulnerabilities, and conducting proactive threat hunts using various tools, including Splunk and...Remote job
- ..., career and customer-oriented Cyber Threat Hunter to join our team in Mclean, VA . The... ...technical background and knowledge to proactively detect, investigate, and mitigate cyber... ...information security, computer science, engineering, or other closely related IT discipline...Work at officeLocal area
- ...performing the following duties: Assisting in the execution of threat hunting activities across IT and Operational Technology (OT)... ...events and alerts from multiple enterprise systems (e.g., Intrusion Detection System (IDS), security event logs, endpoint artifacts, service...
- SIXGEN is seeking an Advanced Threat Hunter to proactively identify, investigate, and disrupt advanced cyber threats before they impact enterprise operations. You will hunt across endpoints, networks, cloud environments, and security telemetry to reveal TTPs evading standard...Remote job
- ...Cybersecurity Threat HunterSecurity OperationsUS Exempt... ...Cybersecurity Threat Hunter Security Operations... ...a highly skilled and proactive Cybersecurity Threat... ...threats and developing detection strategies to protect... ...Mentor and guide tier 1 engineers, fostering skill...Full time
$85.1k - $161.7k
RSM US LLP is seeking a Senior Threat Hunter/SOC Analyst in Washington, D.C. This role involves leading complex security investigations,... ...Candidates should possess strong experience in SOC operations, threat detection, and incident management. The ideal candidate should have a...- ...an empowered workforce as an engine to drive its customers' missions... .... Job Overview The SIEM Detection Engineer is responsible for developing... ...that identifies security threats within government agencies.... ..., and alerts in SPL to proactively detect security threats, anomalies...Work at officeLocal area
- ...over bureaucracy. Senior Threat Hunter Analyst Location:... ...continuous monitoring, intrusion detection, threat hunting, incident response... .... The core challenge: proactively hunting adversary activity... ...), GREM (GIAC Reverse Engineering Malware), CySA+, or equivalent...Full timeWork experience placementLocal areaRemote workFlexible hoursShift work
- Revolutional is looking for a Senior Threat Hunter to proactively search for threats that automated tools miss. You will utilize analytical skills and advanced data techniques to hunt for APTs across various network environments. The ideal candidate will have a minimum...Remote job
- ManTech seeks a motivated Cyber Threat Hunter to join our team in McLean, VA. The role involves leveraging technical expertise to detect and mitigate cyber threats, utilizing methodologies like MITRE ATT&CK and conducting threat hunts based on internal data. Qualifications...
- ...Specialist (INFOSEC) at GS-2210-13/14 in Arlington, VA. The role focuses on handling complex IT security work, incident triage, and threat intelligence coordination for national significance incidents. The position emphasizes coordinating with leadership and other...
- ...seeking an Information Technology Cybersecurity Specialist (INFOSEC) at GS-11/12/13. The role focuses on IT-related competencies, threat hunting, incident response coordination, and cross-functional teamwork to safeguard federal networks. Applicants must meet basic IT...
- ...focuses on monitoring, triaging, and responding to cybersecurity threats. The ideal candidate will possess a strong technical... ...passion for operational cybersecurity, working closely with IT and engineering teams. The SOC Analyst II will handle security incidents, conduct...
- ...Job Description Job Description cFocus Software seeks a Detection Engineer to join our program supporting the Administrative Office... ...Technology, or a related field ~3+ years’ experience conducting proactive threat hunting or adversary emulation. ~2+ years demonstrated...Work at office
$91.3k - $221.1k
...and the government forward! Responsibilities Design, engineer, and implement security detection initiatives under the cybersecurity team lead. Develop... ...CK framework for detection mapping Bonus If You Have Threat hunting and automation experience Familiarity with cloud...Work experience placementLive inLocal area$145k - $192.5k
Koitecc Solutions is looking for a Cyber Threat Defense AI Security Senior Engineer to integrate AI technologies into cyber defense. You will lead teams in implementing AI for threat detection, oversee custom model development, and act as a mentor for junior engineers....- ...Defensive Security Analyst to ensure the security of personnel and infrastructure worldwide. You will manage crucial SOC systems, develop detection strategies, and create comprehensive reports for varied audiences. The ideal candidate will have hands-on experience in SOC...Worldwide
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Proactive Threat Hunter & Detection Engineer. Be the first to apply!

