Cybersecurity Threat Hunter

Make a difference here. UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams. By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India. UltraViolet Cyber is seeking a skilled Cybersecurity Threat Hunter to proactively identify, investigate, and mitigate advanced cyber threats targeting our customer environments. This role involves using deep technical expertise, advanced analytics, and knowledge of adversarial tactics, techniques, and procedures (TTPs) to detect threats the evade security controls. The ideal candidate will also contribute to threat detection strategies, help customers strengthen their security posture, and help customers identify weaknesses in their cybersecurity defenses. What You'll Do:

Proactively hunt for hidden threats across endpoints, networks, cloud, and applications.

Develop and execute hypotheses-driven threat hunting campaigns using security data and intelligence.

Analyze large volumes of log, endpoint, and network data to uncover anomalous or malicious activity.

Research and track adversary TTPs and leverage frameworks such as MITRE ATT&CK.

Collaborate with Detection Engineering to refine detection rules, signatures, and playbooks to improve threat detection.

Collaborate with Incident Response and SOC teams to investigate and contain security incidents.

Provide technical mentorship to junior threat hunters and SOC analysts.

Partner with Threat Intelligence to operationalize indicators and adversary insights.

Contribute to continuous improvement of detection engineering and hunting methodologies.

What You've Done:

US Citizenship is Required

4+ years of experience in cybersecurity, with at least 2 years focused on threat hunting, detection engineering, or incident response.

Demonstrating the ability building hypotheses from threat models, not just IOC-driven searches

Strong understanding of attacker tradecraft, including malware, lateral movement, persistence, and exfiltration techniques.

Proficiency with SIEMs, EDR/XDR platforms, and log analysis tools (SentinelOne AI SIEM, CrowdStrike, MS Defender and Sentinel, Splunk, Elastic).

Experience with scripting languages (Python, PowerShell, etc.) to automate analysis and detection.

Familiarity with MITRE ATT&CK, threat intelligence platforms, and adversary emulation.

Strong analytical, investigative, and problem-solving skills.

Experience with cloud security (AWS, Microsoft Azure, GCP).

Knowledge of threat hunting in OT/ICS environments.

B.A or B.S in computer science or related field.

GIAC Threat Hunting (GCTH).

GIAC Certified Enterprise Defender (GCED).

GIAC Certified Intrusion Analyst (GCIA).

What We Offer:

401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed  

Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)  

Group Term Life, Short-Term Disability, Long-Term Disability  

Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness  

Participation in the Discretionary Time Off (DTO) Program  

11 Paid Holidays Annually