Title: Cyber Threat Hunter

Location: National Capital Region

US Citizenship: Required

Clearance: None

Responsibilities:

• Execute threat hunts by proactively and iteratively searching through networks to detect and isolate cyber threats under the supervision of the other threat hunters
• Support cyber incident response efforts by collecting and analyzing evidence and providing reports of identified threats
• Perform deep analysis of active attacks through using digital forensics and malware reverse engineering techniques
• Work closely with other cybersecurity stakeholders to develop a fuller understanding of the intent, objectives, and activity of cyber threat actors, and prioritize/close identified threats in hunts to reduce enterprise risk
• Participate individually and as a part of a team in threat research and threat hunting activities
• Support incident response to provide scale and expertise with complex incidents
• Develop internal relationships with the cyber engineering team and other business stakeholders to drive security controls gap closures

Requirements:

• Bachelor's degree in computer science or engineering field preferred, with 5+ years' work experience in IT cybersecurity with an emphasis on incident response, threat hunting, and threat intelligence usage
• Proficient knowledge of MITRE ATT&CK Framework, Diamond Model of Intrusion Analysis, F3EAD
• Expertise with Search Processing Language, EDR, Splunk, Confluence/JIRA, network telemetry (TCP/IP)
• Strong understanding of offensive security and cyber adversary techniques
• Intermediate cyber security certification (GCIH or GCFE); advanced certification preferred (GCFA, GREM, or GPEN)
• Solid written and verbal communication skills, with the ability to work independently or as a team member
• US citizenship required