NIH - Cyber Hunter
cFocus Software seeks a Cyber Hunter to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance. Qualifications:Public Trust Clearance B.S. Computer Science, Information Technology, or a related field 4+ years conducting threat hunting or advanced cybersecurity investigations. Experience supporting Security Operations Centers (SOC). Experience conducting incident response investigations. Experience utilizing Cyber Threat Intelligence. Experience analyzing malware and advanced threats. Experience with MITRE ATT&CK Framework. Knowledge of NIST SP 800-61 and NIST SP 800-86. Ability to obtain and maintain NIH suitability/background investigation. Active GCIA, GCIH, GREM, GCFA, CySA+, CISSP, CEH, Security+ or SC-200 Duties:Perform proactive enterprise threat hunting across NIH managed systems. Identify Indicators of Compromise (IOCs) and Indicators of Attack (IOAs). Conduct hypothesis-driven threat hunting utilizing MITRE ATT&CK methodologies. Detect Advanced Persistent Threat (APT) activity before operational impact occurs. Perform behavioral analysis across enterprise endpoints, servers, cloud environments, and networks. Develop new hunting methodologies based upon emerging threats.