Cyber Threat Hunter
2 weeks ago
Sev1Tech is looking for the Cyber Threat Hunter to play a role on a very large program involving network, cybersecurity, and cloud operations and engineering support services to a government customer with a significant mission for security and public safety. The contract will encompass a wide range of tasks across Program Management; Monitoring, Analysis and Incident Response; Tier 3 Engineering and O&M; and Field Engineering technical support. Work will be executed in the National Capital Region, in Stennis, Mississippi; Chandler, Arizona; and other locations in the U.S and occasionally OCONUS.
The Department of Homeland Security (DHS), Network Operations Security Center (NOSC) Cyber is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to DHS networks through monitoring, intrusion detection and protective security services to DHS information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations. The NOSC Cyber is responsible for the overall security of DHS Enterprise-wide information systems, and collects, investigates and reports any suspected and confirmed security violations.
Sev1Tech seeks a Cyber Threat Hunter to join our NOSC Cyber Team. The ideal Cyber Threat Hunter is someone who is process driven, curious, and enjoys identifying patterns and anomalies in data that are not immediately obvious.
Responsibilities include but are not limited to:
- Manage all aspects of the Cyber-Threat Hunt lifecycle, including creation and improvement of enterprise-specific Threat Models and threat hypotheses, plan and scope Threat Hunt campaigns, missions, and activities against a variety of threat types and identify enterprise defense gaps and propose potential mitigation activities
- Perform Cyber-Threat Hunt missions by identifying and investigating patterns and anomalies in data, suspicious network activities, including access from Outside the Continental United States (OCONUS) or utilization of non-standard credentials, anomalous or suspicious telemetry, and other Cyber Threat Intelligence
- Pro-actively search networks to detect and isolate advanced cybersecurity threats that evade in-place security solutions
- Regularly perform advanced analysis and adversary hunting activities to pro-actively uncover evidence of adversary presence on DHS networks
- Follow incident response procedures for detected insider threat activity
- Create Threat Models to better understand the DHS IT Enterprise, identify defensive gaps, and prioritize mitigations
- Author, update, and maintain SOPs, playbooks, work instructions
- Utilize Threat Intelligence and Threat Models to create threat hypotheses
- Plan and scope Threat Hunt Missions to verify threat hypotheses
- Pro-actively and iteratively search through systems and networks to detect advanced threats
- Analyze host, network, and application logs in addition to malware and code
- Prepare and report risk analysis and threat findings to appropriate stakeholders
- Create, recommend, and assist with development of new security content as the result of hunt missions to include signatures, alerts, workflows, and automation.
- Coordinate with different teams to improve threat detection, response, and improve overall security posture of the Enterprise
- Bachelors of in Science, Technology, Engineering, Math or related field
- Eight (8) to twelve (12) years of prior relevant experience with a focus on Cyber Security or Masters with six (6) years of prior relevant experience
- At least four (4) years of experience serving as a SOC Analyst and/or Incident Responder Ability to work independently with minimal direction
- Self-starter/self-motivated
- Must have at least one (1) of the following certifications:
- SANS GCIH (GIAC Certified Incident Handler)
- SANS GCFA (GIAC Certified Forensic Analyst)
- SANS GCFE (GIAC Certified Forensic Examiner)
- SANS GREM (GIAC Reverse Engineering Malware)
- SANS GISF (GIAC Information Security Fundamentals)
- SANS GXPN (GIAC Exploit Researcher and Advanced Penetration Tester)
- SANS GCTI (GIAC Cyber Threat Intelligence) SANS GOSI (GIAC Open Source Intelligence)
- SANS GCIA (GIAC Certified Intrusion Analyst)
- SANS GNFA (GIAC Network Forensic Analyst)
- SANS GWAPT (GIAC Web Application Pentester)
- SANS GPEN (GIAC Penetration Tester) Offensive Security Certified Professional (OSCP) Offensive Security Certified Expert (OSCE) Offensive Security Wireless Professional (OSWP) Offensive Security Exploitation Expert (OSEE)
- ISC2 CCFP (Certified Cyber Forensics Professional)
- ISC2 CISSP (Certified Information Systems Security Professional)
- Ability to provide proof of U.S. Citizenship in order to obtain a Dept of Homeland (DHS) Public Trust clearance
- Expertise in network and host-based analysis and investigation
- Demonstrated experience planning and executing threat hunt missions
- Understanding of complex Enterprise networks to include routing, switching, firewalls, proxies, load balancers
- Working knowledge of common (HTTP, DNS, SMB, etc) networking protocols
- Familiar with operation of both Windows and Linux based systems
- Proficient with scripting languages such as Python or PowerShell
- Familiarity with Splunk Search Processing Language (SPL) and/or Elastic Domain Specific Language (DSL)
- Demonstrated experience triaging and responding to APT activities
- Experience working with various technologies and platform such as AWS, Azure, O365, containers, etc.
- Understanding of current cyber threat landscape, the different tactics commonly used by adversaries and how you would investigate, contain and recover against their attacks
Founded in 2010, Sev1Tech provides IT, engineering, and program management solutions delivery. Sev1Tech focuses on providing program and IT support services to critical missions across Federal and Commercial Clients. Our Mission is to Build better companies. Enable better government. Protect our nation. Build better humans across the country.
Join the Sev1Tech family where you can achieve great accomplishments while fostering a satisfying and rewarding career progression. Please apply directly through the website at: #joinSev1tech
For any additional questions or to submit any referrals, please contact:
Sev1Tech is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
-
Cybersecurity Threat Analysis
2 weeks ago
Chandler, Arizona, United States Department of Homeland Security Full timeThe Department of Homeland Security (DHS) is recruiting professionals to support a range of leadership roles in Cybersecurity Threat Analysis, including Cybersecurity Threat Manager, Cybersecurity Threat Intelligence Branch Chief, and Deputy Section Chief Adversary Analysis. All positions are in the DHS Cybersecurity Service. DHS Cybersecurity Service...
-
Manager Information Security
2 weeks ago
Chandler, Arizona, United States Rogers Corporation Full timeSummary: Rogers Corporation is seeking an Information Security Manager to provide information security direction, leadership and oversight of key information security systems, platforms, and processes. This position will provide leadership and direction to key cybersecurity program components including but not limited to Security Architecture,...
-
Technical Solution Specialist
2 weeks ago
Chandler, Arizona, United States Insight Direct UK Ltd Full timeSelect how often (in days) to receive an alert:Gurugram Gurgaon HR, INRequisition Number: 96495Job Title Technical Solution Specialist – Defender for endpoint, Microsoft Purview, DLPAbout Insight:Founded in 1998 , Insight is headquartered in Chandler, Arizona, USA and has more and has more than 13000+ Teammates worldwide with global presence in Canada,...
-
Cybersecurity Services Program Lead
2 weeks ago
Chandler, Arizona, United States ManTech Full timeManTech Cybersecurity Services Program Lead Chandler , Arizona Apply Now Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International, you'll help protect our national security while working on innovative projects that offer opportunities for advancement.ManTech is...
-
Big Data Engineer- Chandler, Charlotte, Dallas
4 weeks ago
Chandler, Arizona, United States Randstad USA Full timejob summary: Randstad Digital is hiring and we're looking for someone like YOU to join our team If you are seeking a new opportunity, looking to grow in your career, or you know someone who is - we want to hear from you Take a look at the below opportunity, or feel free to visit to view and apply to any of our open roles.location: Chandler, Arizona job...
-
Big Data Engineer- Chandler, Charlotte, Dallas
1 month ago
Chandler, Arizona, United States Randstad USA Full timejob summary: Randstad Digital is hiring and we're looking for someone like YOU to join our team If you are seeking a new opportunity, looking to grow in your career, or you know someone who is - we want to hear from you Take a look at the below opportunity, or feel free to visit to view and apply to any of our open roles.location: Chandler, Arizona job...
-
SQL Server SSIS Developer
6 days ago
Chandler, Arizona, United States Motion Recruitment Full timeOutstanding long-term contract opportunity A well-known Financial Services Company is looking for a Database Engineer in Chandler. AZ (Hybrid).Work with the brightest minds at one of the largest financial institutions in the world. This is a long-term contract opportunity that includes a competitive benefit package Our client has been around for over 150...
-
big data engineer- chandler, charlotte, dallas
2 weeks ago
Chandler, Arizona, United States Randstad Full timebig data engineer- chandler, charlotte, dallas. chandler , arizona posted 3 days ago job details summary $69 - $69.13 per hour temp to perm bachelor degree category computer and mathematical occupations reference job details job summary Randstad Digital is hiring and we're looking for someone like YOU to join our team If you are seeking a new...
-
Director of Information Technology
2 weeks ago
Chandler, Arizona, United States Ally Pediatric Therapy Full timeCompany Overview: We are a medium-sized organization passionately dedicated to providing clinical care for children with autism. We are driven to empower families and individuals affected by autism through innovative therapies and comprehensive support services. We are committed to leveraging technology to enhance our operations and improve outcomes for our...
-
Cybersecurity Threat Analysis
2 months ago
Chandler, United States DHS Headquarters Full timeSummary The Department of Homeland Security (DHS) is recruiting professionals to support a range of developmental roles in Cybersecurity Threat Analysis, including Cybersecurity Threat Analyst, Cybersecurity Threat Intelligence Analyst, and Cybersecurity Defense Operations Analyst. All positions are in the DHS Cybersecurity Service. Duties There...
-
Cybersecurity Threat Analysis
3 weeks ago
Chandler, United States Department of Homeland Security Full timeThe Department of Homeland Security (DHS) is recruiting professionals to support a range of leadership roles in Cybersecurity Threat Analysis, including Cybersecurity Threat Manager, Cybersecurity Threat Intelligence Branch Chief, and Deputy Section Chief Adversary Analysis. All positions are in the DHS Cybersecurity Service. DHS Cybersecurity Service...
-
Cybersecurity Threat Analysis
3 weeks ago
Chandler, United States Department of Homeland Security Full timeThe Department of Homeland Security (DHS) is recruiting professionals to support a range of leadership roles in Cybersecurity Threat Analysis, including Cybersecurity Threat Manager, Cybersecurity Threat Intelligence Branch Chief, and Deputy Section Chief Adversary Analysis. All positions are in the DHS Cybersecurity Service. DHS Cybersecurity Service...
-
Cybersecurity Threat Analysis
2 weeks ago
Chandler, United States Department Of Homeland Security Full timeThe Department of Homeland Security (DHS) is recruiting professionals to support a range of leadership roles in Cybersecurity Threat Analysis, including Cybersecurity Threat Manager, Cybersecurity Threat Intelligence Branch Chief, and Deputy Section Chief Adversary Analysis. All positions are in the DHS Cybersecurity Service.DHS Cybersecurity Service...
-
Cybersecurity Threat Analysis
3 weeks ago
Chandler, United States US DHS Headquarters Full time**Duties**: DHS Cybersecurity Service (DHS-CS) uses a multi-phase assessment process to qualify applicants seeking employment through the DHS-CS. Given the ever-advancing nature of cybersecurity and the ongoing need for cybersecurity talent, DHS-CS uses "Talent Pools" to pull qualified applicants (i.e., individuals who have successfully completed the...
-
Cybersecurity Threat Analysis
3 weeks ago
Chandler, United States US DHS Headquarters Full time**Duties**: DHS Cybersecurity Service (DHS-CS) uses a multi-phase assessment process to qualify applicants seeking employment through the DHS-CS. Given the ever-advancing nature of cybersecurity and the ongoing need for cybersecurity talent, DHS-CS uses "Talent Pools" to pull qualified applicants (i.e., individuals who have successfully completed the...
-
Cyber Security Analyst
4 weeks ago
Chandler, United States Vensure Employer Services Full timeJob DescriptionJob DescriptionAbout UsVensure Employer Solutions is the largest privately held organization in the HR technology and service sector, providing a comprehensive portfolio of solutions, including HR/HCM technology, managed services, and global business process outsourcing (BPO). The company and its service providers collectively serve over...
-
Cyber Security Analyst
1 month ago
Chandler, United States Vensure Employer Services Full timeJob DescriptionJob DescriptionAbout UsVensure Employer Solutions is the largest privately held organization in the HR technology and service sector, providing a comprehensive portfolio of solutions, including HR/HCM technology, managed services, and global business process outsourcing (BPO). The company and its service providers collectively serve over...
-
Cybersecurity Defensive Operations
2 months ago
Chandler, United States DHS Headquarters Full timeSummary The Department of Homeland Security (DHS) is recruiting professionals to support a range of developmental roles in Cybersecurity Defensive Operations - Intelligence Collection & Analysis as well as Planning, Execution & Analysis, including Cyber Defense Analyst, Defensive Operations Specialist, Vulnerability Analyst, All Source-Collection...
-
Cybersecurity Defensive Operations
4 weeks ago
Chandler, United States DHS Headquarters Full timeSummary The Department of Homeland Security (DHS) is recruiting professionals to support a range of technical roles in Cybersecurity Defensive Operations - Intelligence Collection & Analysis as well as Planning, Execution & Analysis, including Network Operations Security Center (NOSC) Cloud Subject Matter Expert (SME), NOSC Cyber SME, Cyber Forensics...
-
Cybersecurity Defensive Operations
2 months ago
Chandler, United States DHS Headquarters Full timeSummary The Department of Homeland Security (DHS) is recruiting professionals to support a range of technical roles in Cybersecurity Defensive Operations - Intelligence Collection & Analysis as well as Planning, Execution & Analysis, including Network Operations Security Center (NOSC) Cloud Subject Matter Expert (SME), NOSC Cyber SME, Cyber Forensics...
-
Mitigation and Response
2 months ago
Chandler, United States DHS Headquarters Full timeSummary The Department of Homeland Security (DHS) is recruiting professionals to support a range of leadership roles in Mitigation and Response, including Vulnerability Response Section Chief, Lead Cyber Incident Response Coordinator, Targeted Notifications Section Chief, and Senior Cyber Incident Manager. All positions are in the DHS Cybersecurity...
-
Cybersecurity Defensive Operations
2 months ago
Chandler, United States DHS Headquarters Full timeSummary The Department of Homeland Security (DHS) is recruiting professionals to support a range of leadership roles in Cybersecurity Defensive Operations - Intelligence Collection & Analysis as well as Planning, Execution & Analysis, including Cyber Operations Lead, All Source-Collection Manager, All Source-Collection Requirements Manager and Network...
-
Information Security Analyst
3 weeks ago
Chandler, United States Collabera Full timeDescription Home Search Jobs Job Description Information Security Analyst Contract: chandler, Arizona, US Salary: $53.00 Per Hour Job Code: 350591 End Date: 2024-07-12 Days Left: 29 days, 3 hours left Apply DayToDay Responsbilities: The Cyber Threat Fusion Center is looking for a Information Security Analyst to join their Tier 1 team! This individual...
-
Manager Information Security
4 weeks ago
Chandler, United States Rogers Corporation Full timeSummary: Rogers Corporation is seeking an Information Security Manager to provide information security direction, leadership and oversight of key information security systems, platforms, and processes. This position will provide leadership and direction to key cybersecurity program components including but not limited to Security Architecture,...
-
Shift Management Lead
2 months ago
Chandler, United States DHS Headquarters Full timeSummary The Department of Homeland Security (DHS) Office of the Chief Information Officer (OCIO) is recruiting Shift Management Leads, in the Leadership Track, at the Lead Cybersecurity Specialist level, to support a range of DHS Network Operations Security Center (NOSC) efforts in Washington, DC; Chandler, AZ; or Stennis, MS. These positions are in...
-
Digital Forensics
2 weeks ago
Chandler, United States US DHS Headquarters Full time**Duties**: DHS Cybersecurity Service (DHS-CS) uses a multi-phase assessment process to qualify applicants seeking employment through the DHS-CS. Given the ever-advancing nature of cybersecurity and the ongoing need for cybersecurity talent, DHS-CS uses "Talent Pools" to pull qualified applicants (i.e., individuals who have successfully completed the...
-
Digital Forensics
2 weeks ago
Chandler, United States US DHS Headquarters Full time**Duties**: DHS Cybersecurity Service (DHS-CS) uses a multi-phase assessment process to qualify applicants seeking employment through the DHS-CS. Given the ever-advancing nature of cybersecurity and the ongoing need for cybersecurity talent, DHS-CS uses "Talent Pools" to pull qualified applicants (i.e., individuals who have successfully completed the...
-
Digital Forensics-leadership
1 week ago
Chandler, United States US DHS Headquarters Full time**Duties**: DHS Cybersecurity Service (DHS-CS) uses a multi-phase assessment process to qualify applicants seeking employment through the DHS-CS. Given the ever-advancing nature of cybersecurity and the ongoing need for cybersecurity talent, DHS-CS uses "Talent Pools" to pull qualified applicants (i.e., individuals who have successfully completed the...
-
Information Security Engineer
2 months ago
Chandler, United States Almo Full timeTITLE: Information Security Engineer LOCATION: Chandler, AZ (No relocation assistance offered.) COMPANY DESCRIPTION: Our client is a diversified financial services company providing banking, insurance, investments, mortgage, and consumer and commercial finance through more than 9,000 stores and more than 12,000 ATMs and online across the US and...
