Senior Cyber Threat Hunter

Western Governors University•Raleigh, NC

21h•Onsite

About The Position

As a Senior Cyber Threat Hunter, you will play a critical role in protecting the University’s applications, systems, and networks. You will lead advanced threat hunting, vulnerability analysis, and penetration testing–informed detection efforts, strengthen cloud and data security, and collaborate across IT and business teams to reduce risk and improve our overall security posture. This is a senior, hands-on role with meaningful influence on strategy, tooling, and day-to-day security operations. WGU is driven by a mission to expand access to higher education through online, competency-based degree programs and is committed to being a great place to work for a diverse workforce of student-focused professionals. The university has pioneered a new way to learn in the 21st century, one that has received praise from academic, industry, government, and media leaders. Working for WGU gives you a part to play in helping students graduate, creating a better tomorrow for themselves and their families.

Requirements

Bachelor’s degree in IT Security, Computer Science, Engineering, or a related field, or equivalent relevant experience.
5 years of information security experience, including hands-on work in vulnerability management, penetration testing support, threat hunting, or security operations.
Experience interpreting vulnerability scan results and penetration testing findings, and communicating risk and remediation guidance to technical and non-technical stakeholders.
Hands-on experience creating and maintaining SIEM detection content and security rules to identify malicious, suspicious, or abnormal activity.
Experience using the MITRE ATT&CK framework to guide threat hunting, detection engineering, or adversary emulation efforts.
Strong working knowledge of AWS services, cloud security engineering principles, and infrastructure as code.
Scripting and automation experience using tools such as Python, Bash, or PowerShell.

Nice To Haves

10 years of information security experience.
Direct experience conducting penetration tests, red team or purple team exercises, or adversary emulation.
Experience preparing System Security Plans, supporting cybersecurity testing, or translating pen test and vulnerability results into executive-level risk summaries.
Relevant security certifications such as CISSP, GIAC, OSCP, CEH, CCSP, AWS, or similar.

Responsibilities

Lead proactive cyber threat hunting, vulnerability analysis, and detection engineering efforts across enterprise and cloud environments.
Perform and support penetration testing activities, including coordination with internal teams and third-party vendors, validation of findings, and translation of results into actionable remediation and detection improvements.
Analyze vulnerability scan results, pen test reports, and threat intelligence to prioritize risk and drive remediation based on exploitability and business impact.
Develop and maintain security detections, analytics, and use cases aligned to the MITRE ATT&CK framework, informed by real-world attack techniques and testing outcomes.
Monitor and analyze endpoint, network, and cloud security telemetry to establish baselines, identify anomalous behavior, and detect adversary techniques.
Partner with infrastructure, cloud, and application teams to remediate vulnerabilities, validate fixes, and embed secure-by-design practices into systems and CI/CD pipelines.
Participate in incident response activities, including root cause analysis, post-incident reviews, and improvements to controls, detections, and testing strategies.