Threat Researcher jobs in United States
cer-icon
Apply on Employer Site
company-logo

Midcontinent Independent System Operator (MISO) · 18 hours ago

Threat Researcher

positionCarmel, IN
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$101K/yr - $126K/yr
date4+ years exp

Midcontinent Independent System Operator (MISO) is a regional transmission organization ensuring reliable power flow to 45 million Americans. As a Threat Researcher, you will identify and mitigate threats, conduct investigations into security incidents, and enhance MISO's cyber defense posture.

Electrical DistributionEnergyNon Profit
check
H1B Sponsor Likelynote

Responsibilities

Perform threat hunting and investigation efforts by conducting host and network forensics, log analysis, and malware triage to identify attacker behavior and emerging risks
Analyze and correlate large volumes of security telemetry and threat intelligence, using analytical techniques to uncover anomalies and develop high-fidelity detections
Design, implement, and continuously improve layered detection and defense capabilities by integrating multiple log sources into unified data models and correlation strategies
Perform independent research on adversary tactics, techniques, and procedures (TTPs), translating findings from incident investigations and attack path testing into actionable detection and engineering requirements
Collaborate closely with SOC, Incident Response, and other teams to operationalize security research, support 24x7 on-call operations, and strengthen MISO’s overall cyber defense posture

Qualification

Cyber SecurityData AnalysisThreat Detection ToolsSecurity AutomationPowerShellPythonBashMicrosoft AzureServiceNowGPEN CertificationGCTI Certification

Required

At least 4+ years relevant work experience in Cyber Security and a data science/analytics background
Bachelor's degree in Computer Science, Applied Mathematics, Statistics, Data Science, Security
Proficiency in threat detection tools (e.g., SIEM, EDR, NDR) and familiarity with threat hunting methodologies
Proficiency with security automation and orchestration (SOAR), threat intelligence platforms, and incident response workflows, including scripting and programming in PowerShell, Python, or Bash, working with APIs and version control (Git), processing large data sets using Power BI and ServiceNow
Knowledge of Microsoft Azure and Entra ID ecosystems including logs, and security products

Preferred

ServiceNow experience is a plus
GPEN – GIAC Penetration Tester
GCTI – GIAC Cyber Threat Intelligence

Benefits

401k
Vacation
Sick and safe time

Company

Midcontinent Independent System Operator (MISO)

twittertwittertwitter
Glassdoor3.6
company-logo
MISO is the electric grid operator for the central United States.
dateFounded in 2001
location
Carmel, Indiana, USA
people-size501-1000 employees
web-link
https://www.misoenergy.org/

H1B Sponsorship

Midcontinent Independent System Operator (MISO) has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (6)
2024 (7)
2023 (17)
2022 (9)
2021 (4)
2020 (10)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Melissa Brown
Senior Vice President and CFO
linkedin
leader-logo
Andre Porter
Senior Vice President, Chief Strategy Officer and General Counsel
linkedin

Recent News

MarketScreener
Power grid for Midwest, South and Manitoba ready for winter but risks remain, MISO says
2025-10-30
Reuters
Google backs US gas power plant with carbon capture for Midwest data centers
2025-10-23
U.S. Department of Energy
Energy Department Announces $625 Million Investment to Reinvigorate and Expand America’s Coal Industry
2025-09-30
Company data provided by crunchbase