Cyber Threat Hunter

Leidos

Hybrid

Quick summary

Work type
Hybrid
Location
DC
Salary
$107,900–$195,050 / yr
Posted
86 days ago

Market check

Salary context

Competitive pay

How this pay compares to similar roles

Similar $165k
This role $151k
$97k most similar roles pay here $211k

This role pays less than 57% of similar roles. Most pay $140,275–$189,525 — the shaded band above. At the midpoint, this role pays about $151k versus about $165k for comparable roles.

Based on 239 similar postings.

Employer

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations.

Leidos currently has 245 open roles on FindRole.

Listed pay typically runs $107,900–$195,050 across 235 roles with salary data.

Most-posted roles

View all roles at Leidos

At a glance

TL;DR · Cyber Threat Hunter

Apply Now Log in to save

Leidos Digital Modernization seeks a Cyber Threat Hunter to join their Defensive Cyber Operations team in Washington, DC. This hybrid role involves on-site work with up to 20% telework and may require shift or weekend coverage for 24/7 support. The primary responsibilities include developing structured hunt campaigns based on the latest TTPs, analyzing large datasets to detect stealthy attacks, transforming manual discoveries into automated detection rules, deploying automation scripts for threat mitigation, utilizing MITRE ATT&CK framework for APT targeting, integrating indications and warnings, authoring technical reports, and maintaining situational awareness of the current threat landscape. The ideal candidate should have a Bachelor’s or Master’s degree with relevant experience, DoD 8570 certifications, and expertise in networking protocols, security elements, data analysis, and query languages like SPL, KQL, or DSL. Preferred skills include proficiency in Python, PowerShell, Bash, digital forensics, cloud infrastructure, and AI-driven analytics for enhanced defense capabilities.

Skills

MITRE ATT&CK Python Splunk Kusto Elasticsearch AWS Azure PowerShell Bash TCP/IP DNS HTTP/S IDS/IPS Next-gen firewalls SIEM EDR Terraform CI/CD Docker

What you'll do

  • Develop and execute structured hunt campaigns based on adversary TTPs.
  • Query massive datasets to identify low-profile cyber threats that evade automated detection.
  • Transform manual hunt discoveries into high-fidelity automated detection rules with detection teams.
  • Design automation scripts for rapid threat mitigation and isolation of compromised assets.
  • Proactively search for APT activity using MITRE ATT&CK framework, assuming a breach mentality.
  • Analyze telemetry to identify early indicators and warnings signaling potential cyber compromises.

What we're looking for

  • Bachelor’s Degree with 8+ years of experience or Master’s Degree with 6+ years; additional experience may substitute degrees.
  • DoD 8570 IAT Level II/III certification required within 180 days (e.g., CompTIA Security+, CySA+, GSEC, SSCP).
  • DoD 8570 CSSP Analyst and CSSP Infrastructure Support certifications required within 180 days.
  • Expert knowledge of networking protocols and security elements like IDS/IPS and next-gen firewalls.
  • Current DoD TS/SCI security clearance with ability to pass additional customer suitability screenings.
  • Experience analyzing complex packet captures and endpoint logs for attack reconstruction.

Related searches

More Cyber Threat Hunter jobs All jobs at Leidos

More like this

Similar roles

Cyber Threat Hunter

Leidos

Ashburn, VA 75 days ago $131,300$237,350
Python PowerShell Splunk Elasticsearch AWS Azure Linux Windows HTTP DNS SMB CI/CD
Save

Senior Cyber Threat Hunter

Adobe

San Jose 24 days ago $180,600$261,450
Python SIEM SPL SQL KQL Git CI/CD APIs Cloud Infrastructure Endpoint Detection Identity Management Network Telemetry Threat Intelligence DFIR Log Forensics Automation Scripts Analytics Detection Engineering
Save

Staff Cyber Threat Hunter

Adobe

San Jose 5 days ago $214,100$310,100
Python Kubernetes CI/CD AWS SIEM SQL SPL KQL Git ML Anomaly Detection Statistical Analysis Threat Intelligence Red Team CSIRT Docker Terraform
Save

Staff Cyber Threat Hunter

Adobe

Remote (San Jose, CA) 5 days ago $214,100$310,100
Python Kubernetes CI/CD APIs Git SIEM SQL SPL KQL ML Anomaly Detection Statistical Concepts Cloud TTP Automation Workflow Improvements
Remote
Save

Cyber Threat Intelligence Analyst

Leidos

9358 Undisclosed Dc Customer Site, US 86 days ago $107,900$195,050
MITRE ATT&CK Threat Intelligence Platform (TIP) Python PowerShell SPL KQL Elastic DSL AWS Azure O365 Cyber Kill Chain Diamond Model of Intrusion Analysis Anomali ThreatConnect MISP
Hybrid
Save

Cyber Security Specialist

Leidos

Fort Belvoir, VA 40 days ago $107,900$195,050
Risk Management Framework CI/CD ICD 503 Risk Analysis Cybersecurity Analysis Accreditation Processes Compliance Systems Top Secret/SCI Clearance DoD Acquisition Programs Information Assurance GRIDS IV System Python PostgreSQL Kubernetes
Save