[Remote] Senior Detection & Hunt Engineer

Note: The job is a remote job and is open to candidates in USA. Colossus Technologies Group is a large, mission-driven healthcare organization operating at enterprise scale. They are seeking a Senior Threat Hunting and Detection Engineering professional to identify, detect, and respond to sophisticated cyber threats in a highly regulated environment. Responsibilities • Research and develop new approaches for detecting both common and emerging threats using endpoint telemetry • Analyze attacker behavior through malware samples, exploitation attempts, and evidence of malicious infrastructure • Design, build, and tune detection content leveraging endpoint and SIEM data • Conduct proactive threat hunts aligned to attacker tactics and techniques • Track and map adversary TTPs and identify gaps or opportunities in detection coverage • Monitor active threats impacting the enterprise and provide actionable analysis to reduce risk • Collaborate closely with Incident Response, Security Operations, Endpoint Security, and Detection teams • Support detection and response efforts during investigations and incidents Skills • Strong understanding of endpoint and network forensics concepts • Solid knowledge of common attacker TTPs and detection methodologies • Experience analyzing security events using SIEM platforms for endpoint and network data • Familiarity with security vulnerabilities, exploits, and detection strategies • Understanding of networking fundamentals relevant to cybersecurity • Knowledge of common protocols (e.g., HTTP, DNS, SSH, FTP/SFTP) • Experience working with enterprise security technologies such as firewalls, IDS/IPS, antivirus, and EDR solutions • Strong written and verbal communication skills • Bachelor's degree in computer science, Information Systems, Mathematics, or a related field (or equivalent experience) • 8+ years of IT experience, including 5+ years in cybersecurity operations, threat hunting, detection engineering, threat intelligence, or incident response • Hands-on experience with endpoint detection and response (EDR) platforms, including architecture, limitations, and bypass techniques • Experience working with CrowdStrike Falcon and Falcon Data Replicator • Proficiency with Splunk, including SPL and building custom dashboards • Experience with programming or scripting (Python, JavaScript, C/C++, or similar) • Experience building or maintaining labs for testing malware and attacker techniques • Familiarity with the MITRE ATT&CK Framework • Relevant certifications (GIAC GDAT, GXPN, GCIA, etc.) are a plus Company Overview • At Colossus Technologies Group, we provide top-tier cybersecurity and digital trust staffing, IT consulting, and project management solutions, including privacy, security, and GRC SaaS platform solution implementation. It was founded in 2021, and is headquartered in Boston, Massachusetts, US, with a workforce of 2-10 employees. Its website is Apply tot his job