RemoteLeaf Logo
Log in Sign up

Cyber Threat Researcher

1 hour, 5 minutes ago
United States
Full-time
Mid Level
Security Analyst
Cybersecurity
CrowdStrike Cybersecurity Elasticsearch PowerShell Python SIEM SOC
Apply Now

UltraViolet Cyber

UltraViolet Cyber is a cybersecurity company focused on unified offensive and defensive security operations. It describes itself as a practitioner-led MSSP delivering managed detection and response, SOC-as-a-Service, red teaming, penetration testing, application security testing, continuous threat exposure management, and dedicated defense, with its UV Lens Security-as-Code platform at the core of its integrated security operations approach.

Computer and Network Security
501-1000
View All Jobs 6

Description

  • Proactively create detection rules to alert SOC analysts to intrusions against customer networks.
  • Tune and enhance existing detections to reduce noise and improve defense against evolving threats.
  • Conduct hypothesis-driven threat hunts using security data and threat intelligence.
  • Research, track, and analyze adversary tactics, techniques, and procedures using frameworks such as MITRE ATT&CK.
  • Contribute to offensive and defensive threat intelligence reports and detection opportunities.
  • Provide technical mentorship to junior threat hunters and SOC analysts.
  • Collaborate with Incident Response and SOC teams to investigate and contain security incidents.
  • Engage with internal account teams and customers to strengthen security posture, identify weaknesses, and report findings and detection strategies.
  • Provide technical insight to internal account teams and customers as needed.
  • Contribute to continuous improvement of detection engineering and threat hunting methodologies.

Requirements

  • U.S. citizenship is required.
  • At least 4+ years of experience in cybersecurity.
  • At least 1 year of focused experience in threat hunting or detection engineering.
  • Experience building custom behavior-based or threshold-based detections in customer environments from scratch.
  • Ability to identify and tune detection flaws to reduce noise with little to no oversight.
  • Experience performing hypothesis-driven threat hunts in customer environments.
  • Ability to clearly and concisely report threat hunting findings.
  • Experience attending customer meetings, including those involving senior leadership.
  • Working understanding of the MITRE ATT&CK framework.
  • Background knowledge of the cyber threat landscape, including threat actors, malware, and evolving TTPs.
  • Experience working with cyber threat intelligence analysts or teams to identify new detection opportunities.
  • Proficiency with SIEMs, EDR/XDR platforms, and log analysis tools.
  • Experience with scripting languages such as Python or PowerShell.
  • Willingness to work in a team environment, learn from senior team members, and mentor junior team members.
  • Experience building detections in SentinelOne, Elastic, and/or CrowdStrike platforms, preferred.
  • Prior experience supporting a Threat Intelligence team, preferred.
  • GIAC Threat Hunting (GCTH), Certified Enterprise Defender (GCED), or Certified Intrusion Analyst (GCIA) certification(s), preferred.

Benefits

  • 401(k) with employer match of 100% of the first 3% contributed and 50% of the next 2% contributed.
  • Medical, dental, and vision insurance available on the first day of the month following your first day of employment.
  • Group term life insurance, short-term disability, and long-term disability coverage.
  • Voluntary life, hospital indemnity, accident, and critical illness coverage options.
  • Participation in the Discretionary Time Off (DTO) program.
  • 11 paid holidays annually.
  • Remote work arrangement.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Apogee Global RMS

Risk Analyst

Apogee Global RMS Professional Services

Apogee Global RMS is seeking contract Risk Analysts to research and produce analytical intelligence products for its Rogue Risk Analysis Group, supporting client advisories, briefings, and thought leadership across the firm's Nexus of Risk framework.

United States Contract Mid Level Security Analyst
1 hour, 35 minutes ago
TOMORROW HIRE

Jr. Identity Security Metrics Consultant & Databricks Analyst - Secret Clearance

TOMORROW HIRE Internet Software & Services

Junior Identity Security Metrics Consultant & Databricks Analyst for a remote U.S. role supporting enterprise identity security and analytics efforts across Okta, Ping, and Databricks environments.

United States Full-time Junior Data Analyst Security Analyst
$70k-$80k
Databricks Machine Learning
1 hour, 50 minutes ago
Avint

Entry-Level Assessor (Assessment & RMF Track)

Avint 11-50 IT Services

Avint is hiring an Entry-Level Cybersecurity Analyst to support security assessment, documentation, and continuous monitoring for critical systems in the HACS program and federal cybersecurity operations.

United States Full-time Entry Level Security Analyst
Cybersecurity
3 hours, 34 minutes ago
Banner Bank

Senior Cyber Security Analyst (Remote within WA, ID, OR)

Banner Bank 1K-5K Banks

Senior Cyber Security Analyst at a financial services organization, leading enterprise security efforts across on-premises and Azure environments to protect systems, data, and operations.

United States Full-time Senior Security Analyst
$117k-$154k
Active Directory Azure Encryption Network Security
1 day, 1 hour ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers