AOUSC - Cyber Threat Intelligence & Threat Hunting Lead

cFocus Software Incorporated•Washington, DC

About The Position

The Cyber Threat Intelligence & Threat Hunting Lead will oversee integrated cyber threat intelligence (CTI), detection engineering, and proactive threat hunting operations supporting enterprise cyber defense missions. The Lead will drive development of intelligence-driven detections, hunt methodologies, adversary tracking, SIEM content engineering, and operational threat-informed defense capabilities.

Requirements

10+ years of cybersecurity operations experience.
5+ years supporting CTI, threat hunting, or detection engineering programs.
Experience with Splunk, Sentinel, CrowdStrike, EDR telemetry, detection content engineering, and intelligence platforms.
Strong understanding of MITRE ATT&CK, adversary tradecraft, malware analysis, and intelligence analysis methodologies.
Experience developing SIEM detections, hunt analytics, detection tuning, and operational reporting.

Nice To Haves

GCTI
GCFA
GCIH
GMON
GCDA
CISSP
Splunk Security certifications

Responsibilities

Lead CTI, detection engineering, and threat hunting operations.
Develop intelligence-driven detection and hunt strategies.
Produce operational and strategic threat intelligence reporting.
Develop and maintain SIEM detections, analytics, correlation rules, behavioral detections, and hunt playbooks.
Conduct hypothesis-based threat hunting aligned to MITRE ATT&CK, adversary TTPs, malware campaigns, and emerging threats.
Integrate CTI into SOC workflows, detection engineering, and incident response operations.
Analyze malware trends, adversary infrastructure, campaigns, indicators, and attack patterns.
Support automation and SOAR integration initiatives.
Brief executives and technical leadership on emerging threats and operational risk.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume