Security Monitoring and Threat Hunting Analyst

Remote • Posted 1 hour ago • Updated 1 hour ago
Contract W2
Remote
Depends on Experience
Fitment

Dice Job Match Score™

👤 Reviewing your profile...

Job Details

Skills

  • SQL
  • Endpoint Protection
  • Incident Management
  • Productivity
  • SIEM
  • SPL
  • Security Operations
  • Analytical Skill
  • Artificial Intelligence
  • Cloud Computing
  • Communication
  • Network
  • System On A Chip
  • Technical Analysis
  • Threat Analysis
  • Workflow

Summary

Security Monitoring and Threat Hunting Analyst

The Security Monitoring and Threat Hunting Analyst is responsible for monitoring cyber alerts, investigating suspicious activity, and conducting proactive threat hunts to identify malicious behavior, uncover detection gaps, and reduce enterprise cyber risk. This role combines alert triage, analytical investigation, and hypothesis-driven hunting to support early threat identification and informed escalation.

Primary Responsibilities

  • Monitor, triage, enrich, and investigate cyber alerts from SIEM, EDR/XDR, identity, cloud, network, email, and other security platforms.
  • Correlate activity across telemetry sources to determine severity, scope, affected assets, user context, and appropriate escalation paths.
  • Conduct hypothesis-driven threat hunts informed by threat intelligence, adversary behavior, incident trends, anomalies, and known detection gaps.
  • Document alert analysis, hunt methodology, findings, timelines, evidence, conclusions, and recommended follow-up actions.
  • Escalate confirmed or suspected threats to incident response or security operations teams with clear evidence, confidence level, and recommended next steps.
  • Identify opportunities to improve detections, logging, enrichment, playbooks, and analyst workflows based on alert and hunt outcomes.


Required Qualifications

  • Experience in security monitoring, threat hunting, incident response, SOC operations, or a related cyber defense function.
  • Hands-on experience analyzing alerts and telemetry from SIEM, EDR/XDR, identity, cloud, network, email, or endpoint security platforms.
  • Ability to perform investigative analysis, correlate events, assess risk, and determine when activity should be escalated.
  • Working knowledge of adversary tactics, techniques, and procedures across enterprise environments.
  • Ability to write and execute analytical queries using SPL, KQL, SQL, EDR query languages, or similar tools.
  • Strong written and verbal communication skills, including the ability to document findings and explain technical analysis clearly.
  • Baseline proficiency in enterprise-approved AI tools. This includes, but is not limited to: Consistent Use, Applied Productivity, and Continuous Learning of AI Tools.


Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: prutx001
  • Position Id: 9016611
  • Posted 1 hour ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Remote

Today

Full-time

Remote

Today

Full-time

Remote

Today

Full-time

Remote or Austin, Texas

Today

Full-time

USD 190,000.00 - 210,000.00 per year

Search all similar jobs