SOC Tier III Analyst / Threat Hunter | WINTrio LLC

Remote Full-time
Company Overview

WINTrio LLC (WINTrio) is a leading provider of Cyber/DevSecOps, Cloud, Artificial Intelligence (AI)/Machine Learning (ML), and Agile Software Development solutions. We collaborate closely with federal and commercial clients to solve complex technical challenges by delivering innovative, agile, and cost-effective solutions. Our team is empowered to think creatively and deliver impactful results that drive measurable value.

Role: SOC Tier III Analyst / Threat Hunter
Location: Remote
Client: Long-term Federal/Public Sector
Work Authorization: US Citizen or Green Card preferred; must be able to pass federal background and suitability requirements.

Job Summary:

As a SOC Tier III Analyst / Threat Hunter, you will handle complex incident investigations, proactive threat hunting, detection validation, advanced adversary behavior analysis, and purple team support for a federal vSOC program. This role requires expert-level KQL, Microsoft Sentinel, Defender XDR, MITRE ATT&CK, and incident response experience.

Key Responsibilities:
• Lead complex incident investigations and support high-severity escalations.
• Conduct monthly proactive threat hunting across identity, endpoint, cloud, network, email, GitHub, SQL, and backup telemetry.
• Develop and refine hunting hypotheses aligned to MITRE ATT&CK.
• Build and tune advanced KQL queries, detection logic, analytics rules, and workbooks.
• Support purple team exercises and adversary simulation validation.
• Identify gaps in detection coverage and recommend new use cases.
• Support forensic triage, root cause analysis, containment recommendations, and recovery validation.
• Provide technical mentorship to Tier I and Tier II analysts.
• Produce threat hunting reports, detection improvement recommendations, and executive summaries.

Required Qualifications:
• Bachelor’s degree in Cybersecurity, Computer Science, Digital Forensics, Information Technology, or related field.
• 8+ years of cybersecurity operations, threat hunting, detection engineering, incident response, or digital forensics experience.
• Advanced hands-on experience with Microsoft Sentinel, KQL, Defender XDR, and threat hunting.
• Strong understanding of attacker tactics, techniques, and procedures.
• Experience supporting regulated or federal environments with CUI, PII, PHI, FTI, or sensitive data.
• Experience writing incident reports, RCA reports, threat hunt reports, and detection engineering recommendations.

Tools and Preferred Qualifications:
• Microsoft Sentinel, Defender XDR, MDE, MDI, Entra ID, Azure Log Analytics.
• AWS CloudTrail, VPC Flow Logs, GitHub security logs, SQL Server audit logs.
• MITRE ATT&CK, NIST SP 800-61, NIST SP 800-53, Zero Trust.
• Certifications preferred: GCIH, GCIA, GCFA, GNFA, CISSP, CEH, SC-200, AZ-500, AWS Security Specialty.

Benefits
• Medical, Dental, and Vision Insurance
• FSA & HSA options
• 401(k) Retirement Plan
• Annual Bonus & Profit Sharing
• Paid Time Off (PTO) & Vacation
• Employee Assistance Program (EAP)
• Life & Disability Insurance

Why Join WINTrio?

WINTrio is a people-first, employee-driven organization. We offer opportunities to grow across emerging technologies, program management, and business development while working on high-impact federal initiatives.

Equal Opportunity Employer

WINTrio LLC is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration without regard to race, color, religion, sex, gender identity, national origin, age, veteran status, or disability.

Apply tot his job

Apply To this Job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Walmart Work From Home Jobs - (Entry Level / No Experience)

Remote

Experienced Bilingual Healthcare Customer Service Representative - Spanish-English - Remote USA Opportunity at careerzynith

Remote

Night Shift Call Center Jobs In Delhi | Part Time Jobs In India

Remote

Remote Intake Coordinator

Remote

Senior / Lead Interior Designer – Freelance Contract (Remote)

Remote

TREASURY ANL 3

Remote

Work From Home Amazon Data Entry Jobs No Experience Remote - Part-Time

Remote

Project Manager/Paralegal, Legal and Global Affairs

Remote

Chewy Remote Jobs Customer support (Work From Home )

Remote

Working Student Project Coordination and Communication Management (m/f/x) @ Mercedes-Benz Tech Innovation

Remote
← Back