Cyber Threat Hunt Lead

Description

Salary: $150,000 - $165,000/year

Work Location: Hybrid. 4 days/week on site in Washington, DC

• Oversee and direct proactive threat hunting efforts to detect sophisticated adversaries, insider threats, and anomalous activity that evade traditional detection controls
• Design and execute hypothesis-driven hunts using adversary tactics, intelligence reporting, behavioral analytics, and available telemetry
• Manage and coordinate hunt operations within Agile sprint cycles, ensuring completion of assigned objectives and deliverables
• Develop formal threat hunt plans outlining objectives, assumptions, data sources, methodologies, and investigative procedures
• Analyze telemetry from endpoints, networks, cloud environments, identity systems, SIEM platforms, and EDR tools to identify indicators of compromise and attack patterns
• Escalate suspected or confirmed threats in accordance with federal customer incident response procedures
• Coordinate with incident response and triage teams to support investigations and containment efforts
• Identify gaps in detection, logging, or telemetry and work with detection engineering teams to improve visibility
• Integrate threat intelligence into hunting operations and collaborate with intelligence teams to monitor emerging threats
• Conduct advanced analysis of threat actors, malware campaigns, phishing activity, and suspicious infrastructure
• Produce detailed hunt reports documenting methodologies, findings, indicators, and recommended improvements
• Deliver executive-level summaries highlighting threats, operational impacts, and emerging risks
• Provide real-time analytical support during high-priority incidents
• Utilize enterprise security tools such as SIEM, SOAR, endpoint security platforms, and vulnerability management systems
• Develop and maintain standard operating procedures, playbooks, and methodologies aligned with federal cybersecurity standards
• Brief stakeholders and leadership on threat activity and operational findings
• Provide mentorship and oversight to junior analysts and hunting personnel
• Contribute to continuous improvement initiatives related to threat detection, telemetry, and operational efficiency
  
  

Requirements

• Bachelor’s degree in Computer Science, Information Technology, or a related discipline
• Minimum of 5 years of experience in incident response within a large-scale SOC environment (5,000 endpoints), including at least 3 years focused on proactive threat hunting or adversary emulation
• At least 3 years of hands-on experience developing and testing hypotheses, querying large datasets, and identifying advanced persistent threat (APT) behaviors
• Minimum of 2 years of experience using scripting languages such as Python and PowerShell to create tools and automate analysis
• Certification required: OSCP or GXPN
  
  

Clearance Requirement: Ability to obtain and maintain a Public Trust.

The salary range for this position depends upon multiple factors including location, the individual's knowledge, skills, competencies, and experience, and contract-specific budget constraints and organizational requirements.

Benefits

Gunnison Consulting Group's total compensation package also includes bonus and profit-sharing opportunities, depending on company and employee performance. Available employee benefits include:

• 3 weeks of Personal Leave your first year
• 11 paid Holidays each year
• 5 days of Flexible Time Off each year
• 401(k) company match at 50% up to 10% of your salary
• Medical, Dental and Vision Insurance
• Life and Disability Insurance
• Public Transportation Subsidies
• Certifications and Training Allowance - Up to $5,000/year!
  
  

Why Join Gunnison?

• Gunnison takes on ambitious projects. We target fun, challenging work that requires creative thinking and innovation.
• Quality is our top priority.
• Gunnison employee benefits meet or exceed what other companies in the Washington, D.C. metropolitan area offer.
• There is a great sense of camaraderie at Gunnison. This is an atmosphere we will maintain as we continue to grow.
• We are growing rapidly and the opportunity for individual professional growth with Gunnison is outstanding.
• We hire for careers at Gunnison, not to fill a position.
  
  

Equal Opportunity Employer. Must be eligible for employment in the United States. We are unable to sponsor candidates at this time.

In 1994 Gunnison began serving the greater Washington, D.C. metro area, focused on tackling our customers' most ambitious technology projects. By creating a culture dedicated to enabling our customers and employees to achieve more than they ever thought they could, the company has thrived for over 25 years.