Senior Cyber Threat Hunter - Remote Position

About the Role

We're hiring a Senior Cyber Threat Hunter to join our dynamic Cyber Fusion Center (CFC) team in a fully remote capacity. As a Senior Cyber Threat Hunter remote position, you will play a crucial role in safeguarding organizations from cyber threats by investigating adversary tools, techniques, and procedures (TTPs). This is an exciting opportunity to work with a global leader in information solutions and contribute to enhancing security operations.

What You'll Do

• Execute proactive threat hunting activities based on intelligence, telemetry, and hypotheses to identify malicious activity across host, network, and cloud environments.
• Develop and refine hunt queries, detections, and rules (Yara, Sigma) to support continuous improvement of detection engineering use cases.
• Monitor the evolving threat landscape, vulnerabilities, and adversary TTPs, applying this knowledge to enhance hunting strategies.
• Document hunting methodologies, queries, findings, and recommended actions in SOPs and playbooks aligned to MITRE ATT&CK.
• Participate in purple team exercises and adversary simulations to validate detection coverage and improve hunting techniques.
• Utilize SIEM, EDR, NDR, and UEBA tools to conduct hunts and confirm threats through forensic artifact analysis.
• Collaborate with incident response and forensic teams to share findings, assist in remediation, and strengthen detection capabilities.
• Contribute to automation efforts by developing scripts and workflows that reduce repetitive tasks and accelerate hunting operations.

Requirements

• 3–5 years of experience in cybersecurity with a focus on Threat Hunting, Incident Response, Forensics, or Detection Engineering.
• Bachelor’s degree in cybersecurity, computer science, information technology, or related field.
• Certifications such as GIAC Certified Incident Handler (GCIH), GIAC Network Forensic Analyst (GNFA), or equivalent are highly beneficial.
• Hands-on experience with SIEM, EDR, NDR, and forensic tools, with the ability to write hunt queries and detections.
• Working knowledge of MITRE ATT&CK and Cyber Kill Chain frameworks.
• Strong analytical and problem-solving skills to interpret complex data and uncover hidden threats.
• Experience with at least one scripting or programming language (Python, PowerShell, or JavaScript).
• Familiarity with cloud environments (AWS, Azure, GCP) and ability to conduct basic cloud-native hunting.

Nice to Have

• Demonstrated curiosity and willingness to learn advanced hunting techniques, automation, and adversary simulation practices.

What We Offer

• 100% remote work with flexible hours.
• Visa sponsorship and relocation package available.
• Opportunity to work with cutting-edge cybersecurity technologies.
• Collaborative and supportive team environment.
• Professional development opportunities and access to training resources.