Senior Cyber Security Deception Engineer/Threat Hunter

by | Jan 21, 2026

  • Anywhere

Job Title:  Senior Cyber Security Deception Engineer/Threat Hunter
Location:  Rosslyn, VA
Terms:  Full-time; On-site 5 days a week
Requirements:  Must be a U.S. Citizen with Active Security Clearance

About the Role
Currently seeking to hire an experienced Senior Cyber Security Deception Engineer/Threat Hunter to join the Diplomatic Security Cyber Mission Program, delivering leading cyber and technology security expertise to enable innovative, effective, and secure business processes.

Responsibilities

  • Work closely with cross-functional teams, including Security Operations, Incident Response, Threat Intelligence, and Threat Hunting to ensure a proactive and robust security posture.
  • Perform advanced network threat hunting to detect malicious or suspicious behavior on Department on-premise and cloud-based networks.
  • Respond to security events received from CIRT, provide comprehensive findings and recommend remediation steps.
  • Perform advanced traffic analysis (at the packet level) and reconstruction of network traffic to discover anomalies, trends, and patterns.
  • Perform forensic analysis of suspected systems (e.g. on and off premise network devices, and storage media) impacted by malicious activity.
  • Implement and use cyber security frameworks (e.g. MITRE-ATT&CK, Kill Chain, etc.).
  • Has proven expertise in performing analyses to validate established security requirements and recommended additional security requirements and safeguards.
  • May interface with external entities including law enforcement, intelligence and other government organizations and agencies.  

Qualifications: Basic Requirements

  • Bachelor’s degree and 9 years of experience, or 7 years of experience with a Master’s. An additional 4 years of experience will be considered in lieu of degree.
  • Must possess or be able to obtain at least one of the following certifications before start date.
    • CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, or SSCP
  • Proven ability to develop and recommend corrective actions.
  • Expertise, knowledge, and experience integrating new architectural analysis of cyber security features.
  • Comfortable interfacing with external entities including law enforcement, intelligence and other government organizations and agencies.
  • Experience in threat hunting or network/cloud forensics.
  • Active Top Secret security clearance required.
    • The ability to obtain a final TS/SCI.

Preferred Qualifications:

  • Experience using Databricks.
  • Experience using Artificial intelligence (AI) and large language models (LLMs).
  • Ability to create, troubleshoot, configure and operate complex scripting solutions with the ability to output the results in a variety of formats (e.g. HTML, XML, etc.) and to re-purpose the results for reports targeting different technical levels (e.g. other analysts, management, etc.)

About us

Cyber Management International Corporation is actively recruiting highly IT Security professionals looking for challenging, exciting work in support of the U.S. Department of State (DOS). Specifically, our customer is the Bureau of Diplomatic Security (DS), Directorate of Cyber and Technology Security (CTS). DS/CTS is a center of excellence that brings together cybersecurity, technology security, and investigative expertise as a unified security capability focused on solving critical and emerging issues enabling the State Department to fulfill its vital global mission.

 

For more information about our company, please visit www.cybermgt.com or email us at recruiting@cybermgt.com

To apply for this job email your details to gavallask@cybermt.com