Threat Researcher

Reposted Yesterday
Hiring Remotely in United States
Remote
135K-145K Annually
Entry level
Cloud • Software • Cybersecurity
Get IT right.
The Role
Perform static and dynamic malware analysis, reverse engineer payloads, develop emulations and detection logic (C++, C#, PowerShell, etc.), identify telemetry gaps (Sysmon, auditd, EDR), debug with x64dbg/WinDbg, produce technical reports, and support threat hunting and incident response.
Summary Generated by Built In

About Hunter Strategy

Hunter Strategy has a unique philosophy to technical project delivery. We treat all our customers like mission partners because they rely on our team to meet their objectives through complex software engineering, cloud operations, and cyber risk management solutions. Hunter Strategy was founded on the premise that IT is 21st century infrastructure - critically important but only instrumentally valuable. Accordingly, our teams look at problems with a single objective: the identification and enablement of the right capability to address the most vexing problems our Mission Partners face. We continue to support our partners' success by leveraging the right technology, with the right plan, and the right team to address tomorrow's challenges today.


Threat Researcher

Salary Range: $135,000 - $145,000 annually


Position Overview

The Threat Researcher is responsible for analyzing malware and adversary behavior, developing emulations, and creating detection logic to improve visibility and response across enterprise environments. This role supports detection engineering, threat hunting, and incident response by translating malware analysis and telemetry insights into actionable detections and high-quality technical reporting.
Responsibilities

·Perform static and dynamic malware analysis using tools such as Detect It Easy, System Informer, and API Monitor to build attack chains and support emulation development.

·Reverse engineer payloads and scripts to document execution behavior in detail.

·Write emulations in languages such as C++, PowerShell, C#, and others to emulate malware behavior identified during analysis.

·Develop detection logic based on emulations and malware analysis findings.

·Identify telemetry gaps in Sysmon, auditd, EDR, and other data sources to improve detection coverage.

·Produce high-quality technical reports with executive-level summaries of findings.

·Debug malware and emulations using tools such as x64dbg, WinDbg, or other debuggers.

·Analyze applications for vulnerabilities using reverse engineering and debugging tools.

·Correlate events across incidents and malware behaviors identified during malware analysis.

·Conduct hunt activities from a detection engineering perspective.
Educational Requirements / Qualifications

·Strong understanding of Splunk Search Processing Language (SPL).

·Proficiency in coding languages including C++, C#, Python, and Perl.

·Proficiency in scripting languages including PowerShell, JavaScript, and VBScript.

·Strong understanding of networking fundamentals.

·Strong understanding of Windows and Linux internals.
This posting is for a current vacancy and the employer intends to fill this position by August 30th, 2026.

Skills Required

  • Strong understanding of Splunk Search Processing Language (SPL).
  • Proficiency in coding languages including C++, C#, Python, and Perl.
  • Proficiency in scripting languages including PowerShell, JavaScript, and VBScript.
  • Strong understanding of networking fundamentals.
  • Strong understanding of Windows and Linux internals.
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Washington, DC
91 Employees
Year Founded: 2015

What We Do

<​About_US> Cybersecurity and software engineering SMEs that help Government and Commercial customers build secure scalable solutions. <​Goal> Treat every customer like our partner. Build an environment of mutual success with all our partners. <​Solutions> Cyber Fusion Center/Managed Security Services, DevSecOps, Pen Test, CISO-AAS, AngularJS, ReactJS, NodeJS, Java, Spring, MongoDB, Postgres.... Too many to list and we are known to throw in a few fakes to see who is paying attention.

Similar Jobs

Nebulock, Inc. Logo Nebulock, Inc.

Lead Threat Researcher

Artificial Intelligence • Security • Software • Cybersecurity
Remote
United States
19 Employees

Wiz Logo Wiz

Threat Intelligence Researcher (Cloud)

Cloud • Security • Cybersecurity
In-Office or Remote
New York City, NY, USA
700 Employees
151K-208K Annually

Socket (socket.dev) Logo Socket (socket.dev)

Threat Researcher

Software • Cybersecurity
Remote
United States
57 Employees
126K-170K Annually

Similar Companies Hiring

Hanover Park Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
42 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account