Threat Hunter

About RapDev

We specialize in modern ITOM, ITAM, ITSM, DevOps & SecOps ServiceNow delivery and implementations as well as integrations and services for Datadog. Our experienced team of SREs and DevOps engineers brings together these two ecosystems to drive better observability, availability, and deployment velocity across your organization.

About the Job

This individual will be responsible for proactively searching for, identifying, and compiling recommendations for neutralizing threats that have bypassed traditional security defenses in client environments. The ideal candidate will leverage their deep technical expertise, incident response experience, and familiarity with applying cyber threat intelligence to help clients better secure their environments. Importantly, the candidate will lead the maturation of the RapDev Security Team’s threat hunting practice.

This role is based in our Boston office and requires working onsite 3 days a week from Tuesday - Thursday.

What you'll do:

• Lead the maturation of the Security Operations Team’s threat hunting practice

• Proactively hunt for indicators of compromise (IOCs) across the network, endpoints, and cloud environments using threat intelligence and industry-standard hunting methodologies

• Develop and execute complex searches across various data sets and apply macro data analysis skills to uncover anomalies.

• Produce routine reporting for hunts executed, including technical reports at the completion of a hunt with substantive findings and semi-annual executive summary reports

• Utilize various security and observability platform features in hunts for increased fidelity and better context.

• Develop and refine threat hunting playbooks, procedures, and detection rules to improve the security team’s efficiency and effectiveness

• Leverage automation and AI solutions to support and scale human-led hunt operations across client environments.

• Collaborate with the Security Operations Team to integrate new threat intelligence and enhance existing security tools and controls

• Mentor junior analysts and contribute to the ongoing improvement of the organization's overall security posture

Who you are:

• 2-4 years of experience in a technical role in the areas of Security Operations, Incident Response, Detection Engineering, Offensive Security/Red Team, or Cyber Threat Intelligence

• Proven, hands-on experience proactive security operations and threat hunting including a deep understanding of incident response frameworks, methodologies, and forensic techniques

• Exceptional analytical and problem-solving skills with keen attention to detail with the ability to work independently with minimal supervision and manage multiple investigations simultaneously

• Strong communication skills, capable of presenting complex technical information clearly to both technical and non-technical audiences

• A proactive mindset and a passion for continuous learning in the rapidly evolving field of cybersecurity

• Experience analyzing endpoint, network, cloud, and application logging for attack techniques at all stages of the cyber kill chain

• Experience consuming and analyzing Cyber Threat Intelligence for actionable takeaways

• Ability to apply Cyber Threat Intelligence through enrichment, correlation, and attribution

• Ability to see the larger picture when dealing with competing requirements and needs from across the organization in order to build consensus and drive results

• Ability to navigate and work effectively across a complex, geographically dispersed organization

• Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals

• Experience performing security analysis and threat hunting in Cloud environments preferred.

Compensation:

• Base Salary: $90,000-$135,000 annually, depending on experience

Benefits

• 100% Employee Healthcare Coverage (Medical, Dental & Vision)

• Retirement Plan (5% 401k Match, IRA)

• Unlimited Paid Time Off (4-week minimum) (Vacation, Sick & Public Holidays)

• Family Leave (Maternity, Paternity)

• Equity

• Hybrid Work Opportunities

• Fitness & Commuter Subsidies available

• SL & LT Disability

RapDev is an Equal Opportunity Employer. We are committed to providing equal employment opportunities to all applicants and employees without regard to race, color, religion, sex, national origin, age, disability, veteran status, or any other protected characteristic.