Threat Hunting and Research Architect

Valiant Solutions is seeking a Threat Hunting and Research Architect to join our rapidly growing and innovative cybersecurity team!

We are seeking a highly skilled and strategic Threat Hunting and Research Architect to support our client’s enterprise cybersecurity program. This is a senior position that will serve as the lead architect and team lead, delivering both technology and analytics solutions to support hunting and intelligence. This role will provide advanced threat detection, hunting, and analysis support across a diverse set of environments, including secure data networks, on-premises zero-trust networks, and cloud architectures. The ideal candidate will bring a deep understanding of threat intelligence and threat hunting. The successful candidate will have experience designing tooling and automation solutions to support the analytics needs of threat-hunting and threat intelligence teams. You must have extensive experience researching adversary tactics, strong collaboration skills, and a proactive mindset to mitigate evolving cyber threats. The role includes supporting security operations center (SOC) functions, facilitating threat hunting and intelligence-sharing, developing custom analytics, and aligning strategic cybersecurity efforts with client directives. You will lead the design, development, and operation of technology solutions to support threat hunting and threat intelligence.

Named one of the Best Places to Work in the Washington DC area for 11 consecutive years, Valiant is proud of our employee-centric culture and commitment to excellence. If you are interested in learning more about Valiant and this opportunity, we invite you to apply now!

This position allows for 100% remote work. Remote work necessitates a high-level trust in our employees and we strictly adhere to the details found below in our Remote Work Policy. 

Required Experience: 

• Active Top Secret Clearance
• 10 years of experience leading  24x7x365 SOCs, including at least five (5) years managing hybrid environments that span both on-premises and cloud infrastructures.
• Bachelors Degree, or 4 additional years of experience in lieu of degree
• 5+ years of experience in cybersecurity with a focus on threat research, threat hunting, or cyber defense analysis.
• 5+ years of experience working with Splunk
• 5+ years experience scripting in Python
• Experience working with Threat Intelligence Platforms such as MISP
• Experience designing tooling solutions to support threat intelligence and hunt programs
• Demonstrated expertise with advanced threat detection techniques and TTP (tactics, techniques, and procedures) analysis.
• Experience supporting large enterprise SOC environments (on-premises and cloud-based).
• Familiarity with Zero Trust security architectures.
• Proficient in developing and using custom data analytics for threat detection.
• Strong working knowledge of cybersecurity tools and platforms (e.g., SIEM, threat intelligence platforms, endpoint detection).
• Experience using ticketing and incident management systems (e.g., ServiceNow).
• Strong communication and reporting skills with the ability to brief senior executives, CIOs, and technical teams.
• Experience leading or supporting cross-functional cyber teams.
• Related certifications (e.g., CISSP, GCIA, GCTI) preferred.

Responsibilities: 

• Perform advanced threat research and cyber threat hunting across client enterprise and bureau environments.
• Identify and mitigate sophisticated threats using custom analytics, threat models, and prioritization frameworks.
• Collaborate with SOC teams and bureau security units to share threat intelligence and coordinate detection strategies.
• Support cybersecurity operations through ticket management, artifact analysis, and documentation within the client’s ServiceNow system.
• Generate standard and ad hoc threat reports and executive briefings as requested by the client.
• Develop and refine cyber event triage methodologies to support efficient incident response.
• Assist in the consolidation and enhancement of SOC services across multiple client entities.
• Serve as a primary technical resource to the Enterprise Cybersecurity Delivery, Intake, and Operations Management team.
• Support the contract lead with escalations, reporting, and ensuring strategic alignment with client cybersecurity goals.
• Develop and maintain threat detection content, including signatures, use cases, and behavioral analytics to improve proactive defense capabilities.
• Evaluate and integrate threat intelligence feeds and enrichment sources to enhance situational awareness and context for threat investigations.
• Provide expert-level guidance on emerging technologies, attack vectors, and evolving threat landscapes to inform strategic cybersecurity planning.
• Participate in red team/blue team exercises to validate detection capabilities and identify defensive gaps across client systems.
• Mentor junior analysts and engineers, fostering knowledge-sharing and professional development within the cyber operations team.
• Participate in a rotating on-call schedule.

About Valiant Solutions

Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. Named one of the fastest growing privately held companies by Inc. 5000, Washington Technology’s Fast 50, and Washington Business Journal’s Best Places to Work in the D.C. area, Valiant Solutions prides itself on providing its employees with great benefits and career development opportunities. As a company, we are just as committed to growing careers as we are to building world-class IT solutions, all while enjoying an unparalleled work-life balance. We are in a phase of tremendous growth and building the team that will take us to the next level. We seek people whose talents and accomplishments will contribute to a thriving company, who have the character to support their capacity, and can make a positive impact on our culture. Alongside our talented team, you’ll learn to think quickly on your feet and expand your own personal and professional skill set. Our management team will inspire you to consider new perspectives and challenge you to become a better practitioner in the fast-paced industry of IT security. We hire people we respect – and we trust them to deliver results leveraging their expertise. If you would enjoy working in a dynamic environment as part of a stellar team of professionals, then we invite you to apply online today.

Benefits Snapshot (includes, but not limited to)
Valiant pays 99% of the Medical, Dental, and Vision Coverage for Full-time Employees
Valiant contributes 25% towards Health Coverage for Family and Dependents
100% Paid Short Term Disability and Life Insurance Policy for Full-time Employees
100% Paid Certifications
401K Matching up to 4%
Paid Time Off
Paid Federal Holidays
Paid Time On – 40 hours to pursue innovation
Wellness & Fitness Program
Valiant University – Online Education and Training Portal
Reimbursement for Public Transit and Parking
FSA programs for: Medical Costs, Dependent Care, Transit, and Parking
Referral Bonuses

The salary range for this position is a general guideline and not a guarantee of compensation or salary. It has been benchmarked in relation to the scope of the role, market rate, and internal equity. The salary for this role is expected to be in the $160,000 - $189,000 range. Where a candidate falls within the band can be determined based on one or more of the following: skillset, experience level, achievements, education, geographic location, security clearance, involvement in corporate tasks, and other non-discriminatory factors. In addition to the base salary, this role will include benefits as described below.  Valiant reserves the right to adjust the salary range, experience requirements, and position responsibilities at any time without prior notice. 

Remote Work Policy 

Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and Valiant's clients. In alignment with Valiant's inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General’s effort to eliminate conflicting employment, all Valiant employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval.  Employees may not solicit or conduct any outside business during core business hours for Valiant Solutions and our clients.

Equal Employment Opportunity

Valiant Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, marital status, or veteran status, in accordance with applicable law.

Physical Demands

Sitting or standing at a desk for prolonged periods of time and consistent operation of a computer. Frequent communication and exchanging of accurate information via electronic communication, phones, and in person. Occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.

Authorization to Share Resume and Personal Information

By submitting your resume for this position, you authorize Valiant Solutions to share your resume, as well as, personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should Valiant Solutions or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.

#LI-KW1