SOC Threat Hunter

Job description

Everforth ECS is seeking a SOC Threat Hunter to work in our Portland, OR office. Please Note: This position is contingent upon contract award. The Threat Hunter proactively identifies , investigates, and helps mitigate advanced cyber threats that may evade automated detection and traditional monitoring. This role develops threat hypotheses, analyzes endpoint, network, cloud, identity, and security event data, and conducts structured hunts to uncover suspicious behaviors, attacker techniques, and control gaps. The ideal candidate has strong analytical skills, hands-on experience with security monitoring and investigation tools, and the ability to translate threat research into repeatable hunt procedures, detection improvements, and actionable findings for SOC, incident response, engineering, and threat intelligence stakeholders. Key Responsibilities: Threat Hunting & Analysis: - Develop and execute hypothesis-driven hunts across enterprise, cloud, endpoint, identity, and network data sources - Analyze anomalous behavior, suspicious activity, and attacker tactics, techniques, and procedures (TTPs) - Use SIEM, EDR, network, log analytics, and threat intelligence tools to identify pote...