UltraViolet Cyber

Role Description UltraViolet Cyber is seeking an Associate Cyber Threat Researcher (Level I) to join our Threat Intelligence & Detection Engineering (TIDE) team. Your primary responsibilities will include: - Engaging in threat hunts to identify, investigate, and respond to cyber threats in our customer environments. - Creating intelligence-based threat detections to defend our customers against modern cyber threats. - Leveraging knowledge of the cyber threat landscape to support offensive and defensive threat intelligence objectives. - Utilizing deep technical expertise, advanced analytic skillsets, and knowledge of adversarial tactics, techniques, and procedures (TTPs). - Engaging with internal account teams and customers to strengthen their security posture, identify weaknesses, report findings, and detection strategies. Qualifications - U.S. citizenship is required. - At least 1-3 years of experience in cybersecurity, with at least 1 year focused on threat hunting or detection engineering. - History of building custom behavior-based and/or threshold-based detections in customer environments from scratch. - Capable of identifying and tuning flaws in existing detections to reduce noise with little to no oversight. - Experience performing hypothesis-driven threat hunts in customer environments. - Capable of clearly and concisely reporting findings from threat hunts. - History of attending customer meetings, including those involving senior leadership. - Working understanding of the MITRE ATT&CK framework. - Background knowledge in the cyber threat landscape, including threat actors, malware, and evolving TTPs. - Experience working with cyber threat intelligence analysts/teams to identify new detection opportunities. - Proficiency with SIEMs, EDR/XDR platforms, and log analysis tools. - Experience with scripting languages (Python, PowerShell, etc.) for scripting purposes. - Enjoy working in a team environment. - Willingness to learn from more senior team members while mentoring junior team members. Requirements - Experience building detections in SentinelOne, Elastic, and/or CrowdStrike platforms preferred. - Prior experience as part of, or directly supporting, a Threat Intelligence team. - GIAC Threat Hunting (GCTH), Certified Enterprise Defender (GCED), or Certified Intrusion Analyst (GCIA) certification(s). Benefits - 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed. - Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment). - Group Term Life, Short-Term Disability, Long-Term Disability. - Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness. - Participation in the Discretionary Time Off (DTO) Program. - 11 Paid Holidays Annually. - $50,000 - $90,000 a year.

• Collaborate with multiple teams to build and enhance complex software and security tooling that interacts with multiple systems, processes, and standards • Help improve the availability, performance, scalability, and security of Adobe's security tools. • Provide security analysis before and at build time across Adobe’s security tooling • Keep elevated levels of Security and Compliance with the Adobe Standards, including engaging with Adobe product teams on their cloud deployment practices • Enhance our development workflow to follow industry best practices by assisting in development of standards and leveraging automation • Improve our development pipelines so that we can achieve faster and more reliable deploys • Focus on DevSecOps tooling and strategy

• Business Development: Identify, prospect, and qualify new opportunities within federal, civilian, or DoD agencies to build a robust sales pipeline.**• Proposal Support: Assist our proposal team in constructing industry leading proposals to meet government requirements.**• Relationship Management: Build trust with government buyers, procurement officers, and key stakeholders, often navigating complex, multi-level organizations.**• Compliance & Contracting: Understand federal acquisition regulations, procurement processes, and contract vehicles (e.g., GSA schedules, IDIQs).**• Research & Target Identification: Using CRM and research tools (e.g., Salesforce, GovWin) to identify key stakeholders, decision-makers, and influencers within government agencies.**• Strategic Selling: Develop and conduct product demonstrations and leverage partner ecosystems to expand market share.**• Market Intelligence: Monitor government funding cycles, industry trends, and competitor activities to refine sales strategies.**• CRM Management: Maintaining accurate records of interactions, activities, and contact information in Salesforce.

Make a difference here. UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams. By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India. A future cyber security expert! You're passionate about security and ready to dive in, using your growing technical skills to help protect client data and infrastructure from threats. Day-to-day, you’ll focus on monitoring, initial investigation, and following established procedures, while leveraging the expertise of your team to solve problems and learn new things. We are seeking an associate Security Analyst in our rapidly growing and dynamic shared services team.  The ideal candidate will effectively manage security incidents by monitoring, investigating, and identifying the root causes, and recommend effective mitigation strategies. This position offers the opportunity to work with cutting-edge security tools. The role is highly analytical and requires a proactive, detail-oriented mindset to protect critical infrastructure and data. What You'll Do: - Monitor and analyze log data, network traffic, and/or alerts generated by a variety of security technologies in real-time. - Respond, triage, and escalate security incidents using a SIEM platform following documented procedures. - Support the execution of vulnerability scans and assist in analyzing results for remediation recommendations. - Draft security incident reports detailing the threat, its characteristics, and required remediation activities for review by a senior analyst. - Research new threats and ensureappropriate detection capabilities are in place. - Review security incidents and other deliverables for adherence to established procedures and provide documentation updates as necessary. - Contribute to the quality and timeliness of the security incident detection and classification service. - Ensure standards and procedures are adhered to within defined SLA’s. - Articulate security issues to customers, both verbally and written - Referring difficult or complex issues to more experienced staff. - Developing an understanding of current vulnerabilities, attacks, and countermeasures. - Identify opportunities for process improvement and suggest them to stakeholders - Manage and track customer issues and requests within a ticketing system. - Work within a 24x7x365 team to further support the timely delivery of monitoring services. - This position may be assigned to a rotating shift schedule. - Support other teams as needed. What You've Done: - US Citizenship is Required - 0-2 years of experience in an operational or technical environment, preferably with customer-facing responsibilities. - Foundational understanding of core networking concepts including TCP/IP and common Internet protocols. - Exposure to or basic understanding of an information/cyber security role, particularly in security monitoring and analysis. - Familiarity with the cyber security threat landscape, including prevalent vulnerabilities and attack methods. - Familiarity with security tools such as SIEM (Security Information and Event Management) platforms. - Demonstrated technical and troubleshooting skills and the ability to adapt to solve new technical issues. - General systems infrastructure knowledge (Windows/Linux OS). - Strong verbal and written communication skills with a focus on clear and concise reporting. Preferred Qualifications: - Bachelor's degree in Computer Science, Information Technology, or a related field. - Relevant entry-level certifications such as CompTIA Security+, CompTIA CySA+, or GIAC GSEC. - Basic experience with scripting languages (e.g., Python, PowerShell) for task automation. - Experience with ticketing/case management systems. - A strong passion for cyber security, continuous learning, and knowledge sharing. What We Offer: - 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed - Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment) - Group Term Life, Short-Term Disability, Long-Term Disability - Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness - Participation in the Discretionary Time Off (DTO) Program - 11 Paid Holidays Annually $60,000 - $72,000 a year UltraViolet Cyber maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect our company's differing products, services, industries and lines of business. Candidates are typically placed into the range based on the preceding factors. We sincerely thank all applicants in advance for submitting their interest in this position. We know your time is valuable. UltraViolet Cyber welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status. If you want to make an impact, UltraViolet Cyber is the place for you!

• New Business & Territory Growth • You will be aligned to the largest accounts across North America to drive resilient and trustworthy partnerships with a diverse group of customers. • Own end-to-end sales motions: prospecting, qualification, scoping, proposal development, negotiation, and close. • Build and execute a territory plan that expands new logo acquisition and grows revenue across existing enterprise accounts. • Position the full suite of offensive security services—pen testing, red teaming, cloud security testing, and managed offensive capabilities. • Maintain a strong pipeline with 3x+ quota coverage and predictable forecasting. • Client Engagement & Account Strategy • Lead consultative discussions with CISOs, engineering leaders, AppSec teams, and procurement stakeholders. • Partner with technical SMEs and consulting leads to shape solutions aligned to client risk, maturity, and regulatory requirements. • Establish multi-threaded relationships within accounts to improve deal velocity and renewal rates. • Deliver compelling client presentations, statements of work, and value-based proposals. • Collaboration & Internal Alignment • Work closely with the consulting delivery team to scope engagements accurately and ensure high customer satisfaction. • Align with marketing on targeted campaigns, regional events, and ABM programs. • Provide field intelligence and competitive insights back to product, delivery, and leadership teams. • Performance & Metrics • Achieve or exceed quarterly and annual bookings targets. • Maintain accuracy of CRM data, forecasting, and pipeline metrics. • Drive healthy mix of services revenue: net-new logos, expansion, and multi-project programs.

Make a difference here. UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams. By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India. UltraViolet Cyber is seeking a Cyber Threat Detection & Response Engineer to join the Threat Intelligence & Detection Engineering (TIDE) team. Your primary responsibilities will be performing threat hunts to identify, investigate, and respond to cyber threats in our customer environments, and creating intelligence-based threat detections to defend our customers against modern cyber threats. This role requires you to lean on deep technical expertise, advanced analytic skillsets, and knowledge of adversarial tactics, techniques, and procedures (TTPs) to help stop threat actors from compromising our customers. The ideal candidate will be open to engaging with internal account teams and customers to help strengthen their security posture, identify weaknesses, report on findings, and report on detection strategies. What You'll Do: - Proactively hunt for hidden threats across endpoints, networks, cloud, and applications.
 - Proactively create detection rules to alert SOC analysts of intrusions against customer networks. - Assist with tuning and enhancing existing detection rules to better defend against evolving threats. - Develop and execute hypotheses-driven threat hunting campaigns using security data and intelligence.
 - Analyze large volumes of log, endpoint, and network data to uncover anomalous or malicious activity.
 - Research and track adversary TTPs and leverage frameworks such as MITRE ATT&CK. - Collaborate with Detection Engineering to refine detection rules, signatures, and playbooks to improve threat detection.
 - Collaborate with Incident Response and SOC teams to investigate and contain security incidents.
 - Provide technical mentorship to junior threat hunters and SOC analysts.
Partner with Threat Intelligence to operationalize indicators and adversary insights. - Contribute to continuous improvement of detection engineering and hunting methodologies. - Regularly engage with internal account teams and customers to help strengthen their security posture, identify weaknesses, report on findings, and report on detection strategies. - Provide technical insight to internal account teams and customers as needed. What You've Done: - U.S. citizenship is required - 4+ years of experience in cybersecurity, with at least 2 years focused on threat hunting or detection engineering. - History of independently building custom behavior-based and/or threshold-based detections in customer environments from scratch. - Experience building detections in SentinelOne, Elastic, or CrowdStrike platforms. - Capable of independently identifying and tuning flaws in existing detections to reduce noise. - Experience independently building and performing hypothesis-driven threat hunts in customer environments. - Capable of clearly and concisely reporting findings from threat hunts. - History of meeting with customers to explain detections and threat hunt findings to senior leadership teams. - Experience working with and mapping detections to the MITRE ATT&CK framework. - Background knowledge in the cyber threat landscape, including threat actors, malware, and evolving TTPs. - Experience working with cyber threat intelligence analysts/teams to identify new detection opportunities. - Proficiency with SIEMs, EDR/XDR platforms, and log analysis tools. - Experience with scripting languages (Python, PowerShell, etc.) for scripting purposes. - Enjoy working in a team environment. - Willingness to learn from more senior team members while mentoring junior team members. Preferred Qualifications: - Experience with pentesting or red teaming. - Experience with reverse engineering. - GIAC Threat Hunting (GCTH), Certified Enterprise Defender (GCED), or Certified Intrusion Analyst (GCIA) certification(s) What We Offer: - 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed - Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment) - Group Term Life, Short-Term Disability, Long-Term Disability - Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness - Participation in the Discretionary Time Off (DTO) Program - 11 Paid Holidays Annually $100,000 - $120,000 a year UltraViolet Cyber maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect our company's differing products, services, industries and lines of business. Candidates are typically placed into the range based on the preceding factors. We sincerely thank all applicants in advance for submitting their interest in this position. We know your time is valuable. UltraViolet Cyber welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status. If you want to make an impact, UltraViolet Cyber is the place for you!

• Formalize the company’s channel operating model • Design and implement a tiered partner program • Establish partner engagement framework • Create partner enablement framework • Develop partner onboarding playbooks • Align internal teams on partner engagement strategy • Build and deepen relationships with key national partners • Drive consistent regional services pipeline • Deliver partner sales training • Build micro playbooks for partners • Conduct joint account mapping sessions • Introduce operational rigor to partner relationships

• Channel Program Development - Formalize the company’s channel operating model. • Design and implement a tiered partner program. • Establish partner engagement framework. • Create partner enablement framework. • Develop partner onboarding playbooks. • Align internal teams on partner engagement strategy. • Strategic Partner Development - Build and deepen relationships with key national partners. • Turn national partners into consistent sources of large services engagements. • Refresh partner relationships in Regional Partner Activation. • Drive consistent regional services pipeline. • Sales Enablement & Field Activation - A major part of the role will be enabling partner sellers. • Deliver partner sales training. • Build micro playbooks for partners. • Conduct account mapping sessions. • Support joint customer meetings. • Partner Pipeline Development - The Channel Director will own pipeline development with partners. • Joint opportunity identification, co-selling motions, and marketing collaboration. • Partner Governance & Performance - Introduce operational rigor to partner relationships. • Metrics tracked include partner sourced pipeline, partner influenced revenue, active partner sellers, enablement participation, and opportunity conversion rates.

• Proactively hunt for hidden threats across endpoints, networks, cloud, and applications. • Proactively create detection rules to alert SOC analysts of intrusions against customer networks. • Assist with tuning and enhancing existing detection rules to better defend against evolving threats. • Develop and execute hypotheses-driven threat hunting campaigns using security data and intelligence. • Analyze large volumes of log, endpoint, and network data to uncover anomalous or malicious activity. • Research and track adversary TTPs and leverage frameworks such as MITRE ATT&CK. • Collaborate with Detection Engineering to refine detection rules, signatures, and playbooks to improve threat detection. • Collaborate with Incident Response and SOC teams to investigate and contain security incidents. • Provide technical mentorship to junior threat hunters and SOC analysts. • Partner with Threat Intelligence to operationalize indicators and adversary insights. • Contribute to continuous improvement of detection engineering and hunting methodologies. • Regularly engage with internal account teams and customers to help strengthen their security posture, identify weaknesses, report on findings, and report on detection strategies. • Provide technical insight to internal account teams and customers as needed.

• Proactively hunt for hidden threats across endpoints, networks, cloud, and applications. • Proactively create detection rules to alert SOC analysts of intrusions against customer networks. • Assist with tuning and enhancing existing detection rules to better defend against evolving threats. • Develop and execute hypotheses-driven threat hunting campaigns using security data and intelligence. • Analyze large volumes of log, endpoint, and network data to uncover anomalous or malicious activity. • Research and track adversary TTPs and leverage frameworks such as MITRE ATT&CK. • Collaborate with Detection Engineering to refine detection rules, signatures, and playbooks to improve threat detection. • Collaborate with Incident Response and SOC teams to investigate and contain security incidents. • Provide technical mentorship to junior threat hunters and SOC analysts. • Partner with Threat Intelligence to operationalize indicators and adversary insights. • Contribute to continuous improvement of detection engineering and hunting methodologies. • Regularly engage with internal account teams and customers to help strengthen their security posture, identify weaknesses, report on findings, and report on detection strategies. • Provide technical insight to internal account teams and customers as needed.