HHS - Threat Hunter jobs in United States
cer-icon
Apply on Employer Site
company-logo

cFocus Software Incorporated · 22 hours ago

HHS - Threat Hunter

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date5+ years exp

cFocus Software Incorporated is seeking a Threat Hunter to support the Department of Health and Human Services (HHS). The role involves conducting proactive threat hunting, analyzing telemetry for anomalous behaviors, and collaborating with SOC Analysts to identify and respond to threats.

ChatbotGovernmentInformation TechnologySoftware
check
Growth OpportunitiesbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Conduct proactive, hypothesis-driven threat hunting to identify advanced persistent threats, insider threats, and stealthy adversary activity
Analyze system, endpoint, network, cloud, and application telemetry to identify anomalous behaviors
Develop and refine threat hunting hypotheses based on threat intelligence, MITRE ATT&CK techniques, and observed trends
Perform in-depth log analysis using SIEM and security analytics platforms
Identify, analyze, and validate Indicators of Compromise (IOCs) and adversary TTPs
Collaborate with SOC Analysts and Incident Responders to escalate confirmed threats
Develop and tune detection rules, correlation searches, and behavioral analytics
Produce weekly threat hunting reports documenting methodologies, findings, and recommendations
Support malware analysis and reverse engineering activities when required
Integrate threat intelligence feeds from HHS CSIRC, CISA, and other trusted sources
Assist in containment, eradication, and remediation activities during confirmed incidents
Support incident response playbooks, SOP updates, and continuous improvement initiatives
Participate in cyber exercises, tabletop exercises, and red/purple team engagements
Maintain documentation for threat hunting workflows, tools, and techniques

Qualification

Threat huntingIncident responseSIEM toolsMITRE ATT&CKNIST SP 800-61NIST SP 800-53Analytical skillsScripting skillsGCEDGCTIGCIACISSPTechnical writing

Required

Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
Minimum 5–8 years of experience in threat hunting, incident response, or SOC operations
Hands-on experience with enterprise SIEM, EDR, and network security tools
Strong understanding of MITRE ATT&CK, kill chain analysis, and adversary behaviors
Experience analyzing large-scale security telemetry and logs
Knowledge of NIST SP 800-61, NIST SP 800-53, and federal incident response requirements
Strong analytical, scripting, and technical writing skills
Ability to obtain a Public Trust clearance

Preferred

Active GCED, GCTI, GCIA, or CISSP

Company

cFocus Software Incorporated

twittertwitter
company-logo
cFocus Software automates FedRAMP compliance and develops government chatbots for the Azure Government Cloud, Office 365, and SharePoint.
dateFounded in 2006
location
Largo, Florida, USA
people-size11-50 employees
web-link
https://cfocussoftware.com/

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Manisha Griesinger, MPH, MSc
Program Manager | U.S. EPA Office of the Chief Financial Officer
linkedin
Company data provided by crunchbase