Senior IT Professional / Threat Hunter and Tier 2 Security Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Securance Consulting · 2 hours ago

Senior IT Professional / Threat Hunter and Tier 2 Security Analyst

positionHouston, TX
timeFull-time
remoteOnsite
seniorityMid, Senior Level
date2+ years exp

Securance Consulting is seeking a Senior IT Professional / Threat Hunter and Tier 2 Security Analyst to serve as a primary operational threat detection and investigation specialist within their Security Operations Center. The role involves proactively hunting for advanced threats, performing Tier 2 alert triage, leading complex investigations, and coordinating containment and escalation actions across enterprise environments.

Cyber SecurityInformation ServicesInformation Technology
badNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Conduct proactive threat hunting using threat intelligence, IOCs, behavioral indicators, and hypothesis-driven methodologies
Correlate threat intelligence with internal telemetry to identify emerging attack campaigns
Perform adversary, campaign, and technique profiling using MITRE ATT&CK and related frameworks
Develop hunting hypotheses and document threat hunting methodologies and outcomes
Perform Tier 2 alert triage for complex and high-risk security events
Validate alerts, determine severity, and assign incident classifications
Conduct deep analysis across endpoint, network, identity, cloud, and application telemetry
Identify root cause, scope, and potential business impact of incidents
Own Tier 2 escalation decisions and coordinate handoff to Tier 3 or Incident Response teams
Execute and coordinate containment actions in accordance with incident response procedures
Validate remediation actions and support incident closure activities
Maintain chain-of-custody and evidence handling standards where applicable
Develop and tune SIEM detection rules, correlation logic, and custom queries
Reduce false positives and improve detection fidelity through continuous tuning
Validate detection coverage against real-world attack techniques
Perform file, artifact, and malware analysis using sandboxing and forensic tools
Conduct basic reverse engineering and behavioral analysis
Analyze packet captures and network traffic for forensic reconstruction
Manage investigation cases within SOC case management and ticketing platforms
Ensure investigations meet SLA and documentation requirements
Produce investigation reports and executive summaries for leadership
Present threat hunting results and investigation findings to SOC leadership and security management
Document detection gaps, lessons learned, and improvement recommendations
Contribute to continuous improvement of SOC processes
Provide technical guidance and mentorship to Tier 1 analysts
Support training and knowledge development initiatives within the SOC
Act as an operational subject matter expert for threat detection and investigation

Qualification

Threat hunting methodologiesTier 2 incident investigationSIEM query developmentMalware analysisNetwork traffic analysisThreat intelligence applicationIncident escalation coordinationSOC case managementTechnical reportingCompTIA Security+GIAC GSECCompTIA CySA+Mentorship

Required

Associate's degree in Computer Science, Management and Information Systems (MIS), Business, or a related field
System-specific technical certifications may substitute for the Associate degree
Experience in IT security, infrastructure, or application support may substitute for education on a year-for-year basis
Minimum of 24 months of technology experience in IT security or in supporting security aspects of IT infrastructure or application teams
Hands-on experience in SOC operations, threat hunting, or security monitoring
Experience investigating complex security incidents across multiple technology domains
CompTIA Security+
GIAC GSEC
CompTIA CySA+
Threat hunting methodologies
Tier 2 incident investigation
SIEM query development and detection engineering
Malware and artifact analysis
Network traffic analysis
Threat intelligence application
Incident escalation and containment coordination
SOC case management and documentation
Technical reporting and communication

Preferred

Experience with CJIS or regulated environments
Familiarity with NIST 800-53 and NIST CSF
Experience with EDR, SIEM, SOAR, and network security tools
Experience mentoring junior analysts

Company

Securance Consulting

twittertwittertwitter
company-logo
Securance Consulting is an IT company that provides cloud security and cybersecurity services.
dateFounded in 2002
location
Tampa, Florida, USA
people-size11-50 employees
web-link
https://www.securanceconsulting.com/

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Paul Ashe
President, Founder
linkedin
Company data provided by crunchbase