Threat Hunter

Threat Hunters detect, isolate, and prevent threats that evade automated cybersecurity defense solutions.

Role overview

A Cybersecurity Threat Hunter is responsible for detecting and identifying highly advanced cyber threats that cannot be detected by automatic or programmatic solutions. They search for and track hidden threats before they attack, rather than addressing incidents that have already happened, like the Incident Response team. These threats can be posed by insiders, such as employees, or outsiders, like organized crime groups.

Threat Hunters
may also be referred to as:
Cyber Hunting Analyst
Cyber Threat Hunter
Cybersecurity Analyst Threathunter
Threat Hunting Analyst

Career Path

Map your career path by understanding role relationships

Average Salary

Based upon experience, salary for this role ranges from:
National Average
* based upon those with two plus years of cybersecurity experience


Follow and neutralize highly advanced adversaries who cannot be detected with automated solutions.
Searching for hidden threats before they happen.
Gathering information on the behavior, goals, and techniques that the adversary is using.
Analyzing collected data to determine trends in the security environment of the organization.
Making cybersecurity predictions based on their findings and eliminating current vulnerabilities.

Tools & Environment

Cybersecurity Threat Hunters work with a variety of tools to track adversaries and identify suspicious activities, including security monitoring tools, SIEM solutions, analytics tools, and network protocols such as the TCP/IP stack. Threat Hunters also need a deep knowledge of current and past attack methods, attack methodologies, and forensic science.


[cyber_job_role_count] Threat Hunter jobs



Watch our latest videos, talks an recorded events

White Papers

Download our whitepapers and printed resources

Free Courses

Browse our training courses and educational resources
See All


Listen to our podcast features and recorded roundtables

The CyberSN™ Provider Exchange

The training courses, services, products, and DEI providers you need to take control and accelerate your success.


Get in touch to see your product, training course, service, or DEI support on our provider exchange.
Career Acceleration and Training Community Hub

Cyber Leadership Institute

Join the Cyber Leadership Institute Community Hub and benefit from the shared knowledge and experience of a global community of cyber leaders.
A game-changing personal branding program for technical professionals

Stand Out From the Crowd With a Strong Personal Brand (EPB)

The Elevate Your Personal Brand (EPB) program helps technical professionals develop a strong personal brand quickly. This short, intensive, and self-paced course will help you develop, monetize, and sustain an outstanding personal brand
Learn real-world cyber risk management and governance skills from renowned industry leaders

Cyber Skills for Non-Technical Business Leaders (ECRP)

The Executive Cyber Resilience Program (ECRP) has been designed to help non-technical business leaders better understand cyber risk and how it impacts their organization.
For executives in charge of cyber-resilience strategies

Cyber Strategy and Transformational Leadership Skills (CSTP)

The Cyber Strategy and Transformation Program (CSTP) is the ultimate course for senior leaders and project managers responsible for leading cyber strategies and transformation programs across their organizations.
A leadership program for current and aspiring CISOs

Cyber Leadership Program for Experienced Professionals (CLP)

The Cyber Leadership Program (CLP) is an advanced, executive-level program for experienced cyber professionals who want to develop their leadership, executive and board engagement skills and become a leading CISO.

Get our latest insights. Subscribe to our newsletter.