Booz Allen Hamilton Logo

Booz Allen Hamilton

Threat Hunt Analyst

Reposted 7 Hours Ago
Be an Early Applicant
In-Office
Lakewood, CO, USA
99K-225K Annually
Senior level
In-Office
Lakewood, CO, USA
99K-225K Annually
Senior level
The Threat Hunt Analyst leads proactive threat hunting operations, leveraging intelligence to disrupt advanced threats against critical infrastructure, focusing on detection engineering and operational technology.
The summary above was generated by AI
Threat Hunt Analyst

The Opportunity:

Join a high-impact, mission-driven team operating at the forefront of cyber defense for critical infrastructure. As a Threat Hunter, you will be part of a small, agile group entrusted with proactively identifying and disrupting advanced threats targeting some of the nation’s most essential systems.

This role goes beyond traditional detection and response. You will lead and execute sophisticated threat hunting operations, transforming emerging intelligence into actionable hunt missions, engineering novel collection capabilities, and uncovering adversary activity that evades conventional security controls. Working at the intersection of cyber threat intelligence, detection engineering, and operational technology (OT), you will help defend complex, real-world environments where the stakes are tangible and immediate.

You will collaborate closely with system owners, engineers, and OT subject matter experts to design and deploy innovative approaches to visibility and analysis, often in environments where telemetry is limited and adversaries are highly adaptive. Your work will directly support federal missions, contributing to the resilience and security of critical infrastructure sectors.

This is a role for a technically deep, creatively minded operator who thrives in ambiguity, enjoys building new capabilities from the ground up, and is motivated by meaningful, national-level impact.

Join us. The world can’t wait.

You Have:

  • 8+ years of experience supporting cyber operations in incident response, threat hunting, detection engineering, offensive operations, or cybersecurity and information assurance
  • Experience conducting proactive, hypothesis-driven threat hunts in enterprise or industrial environments
  • Experience mapping activity to frameworks such as MITRE ATT&CK
  • Experience with a query and analysis platform such as SIEM or EDR, or log analytics tools
  • Experience analyzing endpoint, network, and log data to identify malicious or anomalous behavior
  • Knowledge of adversary tactics, techniques, and procedures (TTPs)
  • Ability to translate cyber threat intelligence into actionable hunt hypotheses, operational plans, and detection analytics, design, test, and iterate on data collection strategies in constrained or complex environments, and clearly document findings and brief technical and non-technical audiences
  • Top Secret clearance
  • Bachelor's degree
  • GIAC Certification such as GCFA, GCIH, or GCIA, or CISSP Certification

Nice If You Have:

  • Experience working with industrial control systems (ICS), SCADA environments, or other OT networks
  • Experience with the development of custom detection content, signatures, or behavioral analytics beyond out-of-the-box tooling
  • Experience with scripting or programming such as Python or PowerShell, to automate analysis or build custom tooling
  • Experience with the U.S. Intelligence Community and using intelligence to support cyber defensive operations
  • Experience conducting threat hunting in cloud or hybrid environments such as AWS, Azure, or containerized infrastructure
  • Experience with threat emulation or purple teaming
  • Knowledge of OT protocols such as Modbus or DNP3, and visibility challenges unique to industrial environments
  • Knowledge of memory forensics, malware analysis, or reverse engineering
  • Possession of strong written and verbal communication skills

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $99,000.00 to $225,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

Identity Statement

As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Candidate AI Usage Policy

AI is a part of our daily work at Booz Allen, and we are committed to the responsible and ethical use of AI tools. However, we want to ensure a fair candidate process based on your own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) or other tools to assist with responses during interviews (whether in-person or virtual) is prohibited unless permission is explicitly provided.

Work Model
Our people-first culture prioritizes the benefits of collaboration, whether it occurs in person or virtually. To support engagement and effective communication, employees working virtually are generally expected to have their cameras on during meetings.

  • Remote: If this position is listed as remote, there may still be occasions when you are required to work in person at a Booz Allen or customer facility.

  • Hybrid: If this position is listed as hybrid, you will be expected to work from a Booz Allen facility frequently, in alignment with leadership expectations and the needs of the role. You may also be required to work from or visit a customer facility.

  • Onsite: If this position is listed as onsite, work will primarily be performed at a Booz Allen office or customer facility, where employees will collaborate directly with colleagues and customers as required by the role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

Similar Jobs

38 Minutes Ago
In-Office
Colorado Springs, CO, USA
128K-174K Annually
Senior level
128K-174K Annually
Senior level
Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
Perform RMF Assessment & Authorization activities including STIG/SCAP assessments, vulnerability scanning (ACAS), system hardening (ConfigOS), update RMF artifacts in eMASS, validate cybersecurity controls, produce authorization artifacts (TR, ABD, POA&M), and coordinate remediation and audits for missile defense systems.
Top Skills: AcasConfigosContainersDockerDodi 8500.01EmassEss (Hbss)FortifyNist Sp 800-53Red Hat Enterprise Linux (Rhel)RmfScapSonarqubeStig ViewerWindows
39 Minutes Ago
In-Office
Schriever AFB, CO, USA
112K-152K Annually
Mid level
112K-152K Annually
Mid level
Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
The Satellite Systems Engineer will support GPS satellite operations, train as a subsystem SME, resolve satellite anomalies, and improve processes.
Top Skills: Data AnalysisGps EngineeringSatellite OperationsSystems EngineeringTelemetry Analysis
39 Minutes Ago
In-Office
Colorado Springs, CO, USA
150K-220K Annually
Senior level
150K-220K Annually
Senior level
Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
Lead anti-tamper systems and hardware engineering for the C2BMC missile defense program. Perform AT risk/threat assessments, develop and maintain AT, key management, CPI, exportability, and program protection plans; support V&V, fielding decisions, milestone reviews, and customer briefings. Coordinate with MDA and C2BMC leadership, identify countermeasures, and produce technical reports to meet cost, schedule, and performance objectives.
Top Skills: Anti-TamperC2BmcCritical Program Information (Cpi)Defense Exportability AssessmentsIat Level 2Key ManagementVerification And Validation (V&V)

What you need to know about the Colorado Tech Scene

With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.

Key Facts About Colorado Tech

  • Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
  • Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
  • Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
  • Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
  • Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account