Remotery

Senior Threat Hunter

Posted 2 days ago

This is a fully remote position, open to applicants in District of Columbia.

📋 Description

• Work remotely to support a government contract for a client based in Washington, DC.

• Perform data hunting and manipulation to identify cyber threats.

• Oversee projects and tasks under tight deadlines, with the potential to lead teams.


⛳️ Requirements

• Must possess an active Secret security clearance.

• Bachelor’s Degree (or an additional 4+ years of experience may be accepted in lieu of a degree).

• At least 5 years of experience in data hunting, manipulation, and presentation.

• Proven experience in management or as a team leader, with the ability to manage projects and tasks under tight deadlines.

• Proficiency in generating queries and reports.

• Capability to interpret and integrate data from various tool sources.

• Expertise in conducting queries and developing algorithms for data structure analysis.

• Familiarity with the MITRE ATT&CK and D3FEND frameworks.

• Understanding of the TCP/IP networking stack and network IDS technologies.

• Experience in searching network flow, PCAP, logs, and sensors for signs of cyber-attack patterns and hunting for Advanced Persistent Threats (APT).

• Background in creating reusable hunt tactics and techniques.

• Insight into the current landscape of cyber adversary tactics and trends.

• Knowledge of SIEM search language, search techniques, alerts, dashboards, and report generation.

• Strong analytical skills with the ability to conduct effective research, write, communicate, and brief audiences at varying levels, including executives.

• Experience in complex malware analysis.

• Skill in identifying common encoding techniques (e.g., Exclusive Disjunction [XOR], American Standard Code for Information Interchange [ASCII], Unicode, Base64, Uuencode, Uniform Resource Locator [URL] encode).

• Proficient in writing scripts using R, Python, PIG, HIVE, SQL, etc.

• Experience with EDR solutions.

• Ability to develop, update, and maintain standard operating procedures and other technical documentation.

• Must possess at least one of the following certifications: CISSP (associate), CCSP, SSCP, GCIH, GNFA, GCIA, or any from the CSSP Analyst or Infrastructure Support.


🏝️ Benefits

• M9 Benefits - https://m9solutions.com/why-join-m9/#our-benefits

People also viewed

Wiz1 hour ago

Threat Intelligence Researcher – Cloud

US flagNew York OnlyFull-timeThreat Intelligence Specialist£151k – £208k/year
ApplyView job
Valiant Solutions10 hours ago

Senior Cyber Threat Analyst

US flagDistrict of Columbia, +1 more stateFull-timeThreat Intelligence Specialist$120k – $140k/year
ApplyView job
CoreWeave10 hours ago

Senior Threat Intelligence Specialist, Protective and Geopolitical Intel

US flagDistrict of Columbia, +1 more stateFull-timeThreat Intelligence Specialist$134k – $179k/year
ApplyView job
Palo Alto Networks1 day ago

Principal Product Intelligence Analyst – Cortex XSIAM

US flagTexas OnlyFull-timeThreat Intelligence Specialist$159k – $255k/year
ApplyView job
Sibylline Ltd1 day ago

Embedded Protective Intelligence Analyst

US flagUnited States OnlyFull-timeThreat Intelligence Specialist$93k – $130k/year
ApplyView job
Chainalysis Inc.Jul 10

Senior Intelligence Analyst

US flagNorth Carolina OnlyFull-timeThreat Intelligence Specialist$100k – $184k/year
ApplyView job

Never miss a great job!

Get handpicked remote jobs straight to your inbox weekly.

Trusted by 7,400+ designers