Current jobs related to Senior Threat Hunter - Washington - Quadtec Solutions, Inc
-
Cyber Threat Hunter
2 weeks ago
Washington, Washington, D.C., United States Sev1Tech Full timeCyber Threat Hunter Job DescriptionSev1Tech is seeking a highly skilled Cyber Threat Hunter to join our team. As a Cyber Threat Hunter, you will play a critical role in identifying and mitigating cyber threats to our government customer's networks.The ideal candidate will have a strong background in cybersecurity, with experience in threat hunting, incident...
-
Cybersecurity Threat Hunter
1 week ago
Washington, Washington, D.C., United States The Tatitlek Corporation Full timeCybersecurity Threat HunterThe Tatitlek Corporation is seeking a skilled Cybersecurity Threat Hunter to join our team. As a key member of our cybersecurity team, you will be responsible for identifying and mitigating potential security threats to our systems and data.Key Responsibilities:Develop and implement threat hunting strategies to identify and...
-
Cybersecurity Threat Hunter
1 week ago
Washington, Washington, D.C., United States Trustwave Holdings, Inc. Full timeJob SummaryWe are seeking a highly skilled Cybersecurity Threat Hunter to join our team at Trustwave. As a Threat Hunter, you will be responsible for conducting threat hunts, investigations, and containment activities to identify and mitigate potential security threats.You will work closely with our client in Washington D.C. to deliver threat hunting...
-
Senior Threat Hunter
1 week ago
Washington, Washington, D.C., United States Edgewater Federal Solutions Full timeJob DescriptionEdgewater Federal Solutions is seeking a highly skilled Senior Threat Hunter to join our team. As a key member of our cybersecurity team, you will be responsible for providing advanced threat hunting expertise and support to maximize cyber fusion throughout our SOC, ensuring our infrastructure and operations remain safe and secure from the...
-
Cyber Threat Hunter
2 weeks ago
Washington, Washington, D.C., United States Sev1Tech Full timeCyber Threat Hunter Job DescriptionSev1Tech is seeking a highly skilled Cyber Threat Hunter to join our team. As a Cyber Threat Hunter, you will play a critical role in identifying and mitigating cyber threats to our government customer's networks.Key Responsibilities:Manage the Cyber-Threat Hunt lifecycle, including creation and improvement of...
-
Cyber Threat Hunter
4 weeks ago
Washington, Washington, D.C., United States cFocus Software Incorporated Full timeJob Title: Cyber Threat HuntercFocus Software Incorporated is seeking a highly skilled Cyber Threat Hunter to join our team in Washington, DC. This position requires US Citizenship and the ability to obtain a Public Trust clearance.Key Responsibilities:Identify, deter, monitor, and investigate computer and network intrusions.Provide computer forensic support...
-
Cybersecurity Threat Hunter
3 days ago
Washington, Washington, D.C., United States The Tatitlek Corporation Full timeJob SummaryThe Tatitlek Corporation is seeking a skilled Cybersecurity Threat Hunter to join our team. As a key member of our security operations team, you will be responsible for identifying and mitigating cybersecurity threats using advanced threat intelligence and detection techniques.Key ResponsibilitiesDevelop and implement threat hunting strategies to...
-
Cyber Threat Hunter, Senior Analyst
2 weeks ago
Washington, Washington, D.C., United States Tik Tok Full timeAbout the RoleThis is a unique opportunity to join the Threat Led Defense (USTLD) team at TikTok as a Cyber Threat Hunter. As a key member of the Incident Response/Hunt team, you will be responsible for performing Incident Response and Threat Hunting activities on the TikTok enterprise network.Key responsibilities include:Leading incident response and threat...
-
Cybersecurity Threat Hunter
2 weeks ago
Washington, United States Marvell Semiconductor, Inc. Full timeAbout Marvell Semiconductor, Inc.Marvell Semiconductor, Inc. is a leading provider of semiconductor solutions for the data infrastructure that connects our world. Our innovative technology enables new possibilities across enterprise, cloud, and AI, automotive, and carrier architectures.Job DescriptionWe are seeking a highly skilled Cybersecurity Threat...
-
Cybersecurity Threat Hunter
4 weeks ago
Washington, DC, United States Lateral Insights Llc Full timeRole OverviewWe are seeking a highly skilled Threat Hunter / Threat Engineer to join our team at Lateral Insights Llc. In this role, you will be responsible for navigating the complexities of offensive cybersecurity operations, pushing boundaries, and exploring uncharted territories.Key ResponsibilitiesDrive our detection strategy, having an ownership role...
-
Threat Intelligence Specialist
4 weeks ago
Washington, Washington, D.C., United States Lateral Insights LLC Full timeRole: Threat Detection Engineer / Threat HunterWe are seeking a skilled Threat Hunter / Threat Engineer to join our team at Lateral Insights LLC. In this role, you will navigate the complex landscape of cybersecurity threats to identify and mitigate potential risks.Key Responsibilities:Develop and implement threat detection strategies to identify and respond...
-
Threat Intelligence Specialist
4 weeks ago
Washington, Washington, D.C., United States Lateral Insights LLC Full timeRole: Threat Detection Engineer / Threat HunterWe seek a skilled Threat Hunter / Threat Engineer to join our team at Lateral Insights LLC. In this role, you will navigate the complex landscape of cybersecurity threats to identify and mitigate potential risks.Key Responsibilities:Develop and implement threat detection strategies to identify and respond to...
-
Cybersecurity Threat Hunt Lead
3 days ago
Washington, Washington, D.C., United States Valiant Solutions Full timeJob Title: Cybersecurity Threat Hunt LeadAbout the Role:Valiant Solutions is seeking a highly skilled Cybersecurity Threat Hunt Lead to join our rapidly growing and innovative cybersecurity team in the Washington DC area. As a key member of our team, you will be responsible for leading proactive threat-hunting initiatives, overseeing a team of threat...
-
Cyber Threat Investigator
2 weeks ago
Washington, Washington, D.C., United States cFocus Software Incorporated Full timeWe are seeking a highly skilled Cyber Threat Hunter to join our team at cFocus Software Incorporated. This role requires a strong background in computer security and a proven track record of identifying and mitigating cyber threats.The ideal candidate will have a Bachelor's Degree in a computer-related field and at least 5 years of experience in threat...
-
Cyber Threat Investigator
2 weeks ago
Washington, Washington, D.C., United States cFocus Software Incorporated Full timeJob SummarycFocus Software Incorporated seeks a highly skilled Cyber Threat Hunter (Senior) to join our team in Washington, DC. This position requires US Citizenship and the ability to obtain a Public Trust clearance. The successful candidate will work 4 days onsite and 1 day remotely.Key ResponsibilitiesLead a Threat Hunt team, providing oversight and...
-
Washington, Washington, D.C., United States Tik Tok Full timeAbout the RoleThis position reports to the Threat Led Defense (USTLD) team lead. The USTLD mission is to ensure that the Threat Detection and Response organization can detect and mitigate the most critical threats to our user data, employees, and operations.Key Responsibilities Demonstrate leadership abilities, clear and concise communication with a variety...
-
Senior Threat Replication Specialist
1 month ago
Washington, Washington, D.C., United States Bank of America Full timeSenior Adaptive Threat Replication EngineerAbout the RoleWe are seeking a highly skilled Senior Adaptive Threat Replication Engineer to join our Cyber Security Assurance Division. As a key member of our team, you will be responsible for leading and performing advanced technical assessments to identify high-risk vulnerabilities across our global technology...
-
Washington, United States Nuclear Threat Initiative Full timeJob Title: Senior Director/Vice President of Government RelationsNuclear Threat Initiative (NTI) is seeking a seasoned professional to shape and lead our new government relations department as a Senior Director or Vice President, depending on experience.Key Responsibilities:Develop and execute NTI-wide government relations outreach strategy, working with...
-
Washington, Washington, D.C., United States Nuclear Threat Initiative Full timeJob Title: Senior Director/Vice President of Government RelationsNuclear Threat Initiative (NTI) is seeking a seasoned professional to shape and lead our new government relations department.Key Responsibilities:Develop and execute NTI-wide government relations outreach strategy, working with executive and program leadership, driving impact on the...
-
Washington, United States Nuclear Threat Initiative Full timeJob Title: Senior Director/Vice President of Government RelationsNuclear Threat Initiative (NTI) is seeking a seasoned professional to lead our government relations department.Key Responsibilities:Develop and execute NTI-wide government relations outreach strategy, working with executive and program leadership, driving impact on the organization's mission...
Senior Threat Hunter
3 months ago
On-site Requirement: 1 day a week
Clearance: Public Trust type background check and fingerprinting
Must be a US Citizen
Certifications: GCIA, GCIH, GMON, GDAT, Splunk Core Power User
Job Requirements:
Threat Hunt Operations and Analysis supports investigation responding to intrusion detection and incident response at the Tier 3 level. This support includes conducting live hunt missions, monitoring endpoint and network data and collecting/analyzing digital forensic artifacts and malware. Resources shall use a variety of tools to investigate cyber incidents and provide digital forensic products to assist incident response.
- Validate analysis that is conducted and ensure that the analysis provided is completed at a professional standard.
- Ensure efficient configuration and content tuning of threat hunting platforms and security tools to improve intelligence collection efficiency.
- Ensure that events are clearly documented and processed in accordance with SOPs and reporting guidance.
- Review internal SOPs and the Incident Response Plan for quality and accuracy.
- Provide analytics capabilities with respect to threat event data for visualization and trend analysis. Analytics capabilities include:
- Identify, retrieve, and report on relevant Threat Hunting Events
- Utilize visualization tools permitting the identification of trends in event data
- Enable users to display, sort, filter, and query data contained in event records of all types
- Export record and analysis data in a variety of ways, including but not limited to, screen, printer, e-mail, text, HTML, Adobe PDF, and MS Excel
- Communicate clearly both orally and in writing
- Methodically examine all collected Linux host data for evidence of intrusion, malware, or unauthorized activity.
- Methodically examine all collected windows host data for evidence of intrusion, malware, or unauthorized activity.
- Develop and maintain custom acquisition and post processing tools.
- Collect and organize host data pulls at scale. Host data pulls are required for Linux and Windows workstations and servers.
- Conduct full digital forensics on any operating system to include all version of Microsoft Windows, Unix based OS, Mac OS, and mobile operating systems.
- Use isolated virtual environments to conduct research and develop adversary detection methods.
- Use active defense capabilities to profile adversaries and create custom detections to be used in threat hunt operations.
- Conduct Threat Hunt operations in cloud environments, including Azure and O365.
- Leverage domain and enterprise knowledge to create hypotheses and methodologies in support of targeted and ad-hoc threat hunt operations.
- Thoroughly analyze both network and host-based artifacts across all operating systems present within the enterprise for the presence of malicious artifacts.
- Identify potential malicious activity from memory dumps, logs, packet captures and characterize suspicious binaries and be able identify traits, C2, and develop network and host-based IOCs.
- Conduct immediate host-based and network-based forensic examinations on security incidents as they arise to determine the root cause and to reconstruct a timeline of events to facilitate incident response and recovery.
- Support the incident triage process through the examination and analysis of digital evidence and artifacts. Use a variety of tools to investigate incidents and recommend courses of action to safeguard systems.
- Draft hunt, forensic and malware analysis reports that provide a clear explanation of the analysis performed and key findings.
- Report all aspects of the hunt from the methodology as well as finding and recommendations. Where logging is insufficient for determining the presence or absence of a TTP the report details new logging that the customer should enable to detect specific TTPs going forward.
- Present highly technical information to non-technical audiences.
- Accomplish tasks with little guidance and supervision. r. Use PowerShell scripting in support of live forensic investigations. Will write scripts that encapsulate multiple PowerShell cmdlets to support live incident response.
- Conduct live forensic and incident response remotely through an EDR or an “EDR-like” solution.
- Conduct cloud forensics, including O365.
- Use a SIEM, such as Splunk, to support forensic investigations and incident response.
- Use Python or other scripting language to develop or modify existing forensic tools.
- Use a forensic analysis platform, such as Magnet Axiom, EnCase, or Autopsy; and understand the forensic principles behind those automated tools.
- Directly support the provide incident response support for critical security incidents as they arise.
