AHEAD · 20 hours ago
Cyber Threat Hunter
United States
Full-time
Remote
Mid, Senior Level
$115K/yr - $130K/yr
3+ years expAHEAD builds platforms for digital business, focusing on digital transformation through cloud infrastructure and analytics. They are seeking a Cybersecurity Threat Hunter to proactively identify and mitigate advanced threats using advanced analytics and technical expertise.
Cloud ComputingInformation TechnologySoftwareStaffing AgencyVirtualization
Responsibilities
Develop and execute threat-hunting hypotheses based on adversary tactics, techniques, and procedures (TTPs), leveraging frameworks such as MITRE ATT&CK
Engage with Client Security & IT infrastructure and internal AHEAD Managed Security teams to proactively hunt for advanced threats, suspicious behavior, and indicators of compromise (IOCs) across endpoints, networks, cloud, and identity systems
Analyze data from SIEM, EDR/XDR, NDR, cloud security tools, and logs to uncover stealthy or unknown threats
Conduct deep-dive investigations to determine root cause, scope, and impact of identified threats
Collaborate with incident response teams to contain, eradicate, and remediate confirmed threats
Create and refine detection logic, queries, dashboards, and alerts to enhance ongoing monitoring
Stay current on emerging threats, attack techniques, and vulnerabilities, and translate intelligence into actionable hunts
Document findings, develop reports, and communicate results to technical and non-technical stakeholders
Collaborate with managed security peers to contribute to continuous improvement of threat detection and response processes
Qualification
Required
Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience
3–7+ years of experience in cybersecurity, with hands-on experience in threat hunting, incident response, or SOC operations
Strong understanding of operating systems (Windows, Linux, macOS), networking concepts, and common enterprise architectures
Threat intelligence analysis experience and integration into hunting workflows
Proficiency with SIEM platforms and query languages (e.g., SQL, Splunk SPL, Elastic KQL, ESQL)
Experience with EDR/XDR tools (e.g., Elastic Defend, Microsoft Defender, CrowdStrike, SentinelOne)
Experience with cloud platforms and security tooling (AWS, Azure, GCP)
Solid knowledge of attacker techniques, malware behavior, and persistence mechanisms
Ability to analyze large datasets and identify subtle patterns of malicious activity
Strong scripting or programming skills (e.g., Python, PowerShell, Bash)
Customer service focused and portrays energy, professionalism and welcoming characteristics
Preferred
Security certifications such as GCTI, GCED, GCIH, GCIA, GCED, OSCP, or CISSP
Familiarity with digital forensics and memory analysis tools
Experience automating detection and response workflows
Published research, analysis, or articles
Benefits
Medical, Dental, and Vision Insurance
401(k)
Paid company holidays
Paid time off
Paid parental and caregiver leave
Plus more! See benefits https://www.aheadbenefits.com/ for additional details.
Company
AHEAD
AHEAD is a solutions-based company that helps clients move to an optimized IT service delivery model.
1001-5000 employees
H1B Sponsorship
AHEAD has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (24)
2024 (19)
2023 (22)
2022 (20)
2021 (18)
2020 (1)
Funding
Current Stage
Late StageTotal Funding
$97.72M2024-05-06Series Unknown· $5.7M
2024-02-15Series Unknown· $43.6M
2023-11-02Series Unknown· $5.77M
Leadership Team
Daniel Adamany
Founder and CEO
S
Stephen Ayoub
Co-Founder and President
Recent News
2025-11-19
Company data provided by crunchbase