Skip to main content
JB
Open to opportunities

Jeremy Barker

@jeremybarker

I’m a senior cyber threat analyst focused on incident response and hypothesis-driven threat hunting to protect mission-critical systems.

United States
Message

What I'm looking for

I’m seeking a stable, long-term non-DoD cybersecurity role with career continuity, where I can lead incident investigations, run hypothesis-driven threat hunts, mentor analysts, and continuously improve detections and security posture using EDR/SIEM data.

I’m a results-driven cybersecurity professional with 20+ years of hands-on experience in incident response, threat hunting, insider threat detection, and Information Assurance across DoD missions and financial services.

I lead full-scope incident investigations by mapping adversary behaviors to the complete MITRE ATT&CK matrix, conducting proactive TTP-based hunts, and delivering high-fidelity reports and senior leadership briefings throughout the incident response lifecycle.

Most recently as a “Senior Cyber Threat Analyst – Incident response team lead,” I’ve overseen advanced threat analysis for a high-volume SOC environment, mentoring junior analysts and leading global cyber exercises while conducting investigations using OSINT and tools like Recorded Future, CrowdStrike Falcon Intelligence, Elastic SIEM (ELK/Logstash/Kibana), and Microsoft Defender for Endpoint Advanced Hunting with custom KQL queries.

I also bring strong governance depth—proven in GRC/RMF activities such as risk analysis, Assessment & Authorization (A&A), POA&M management, vulnerability scanning, and continuous monitoring—and I contribute to defensive improvements through standardized playbooks and workflows in ServiceNow, plus secure “shift-left” practices for CI/CD security gates and automated scanning.

Experience

Work history, roles, and key accomplishments

VV
Current

Senior Cyber Threat Analyst

Vectrus V2X

Aug 2023 - Present (2 years 10 months)

Led incident response and advanced threat hunting for a high-volume SOC, handling ~260 security incidents per month while mentoring junior analysts. Appointed Lead for the Global Cyber Dominance program, coordinating teams of 40 contractors during red team exercises, and identified previously undetected global threats using OSINT, Recorded Future, and EDR/SIEM telemetry across 100K endpoints.

Incident ResponseThreat HuntingOSINTMicrosoft Defender For EndpointPowerShell
JR

Cyber Engineer / ISSO / ISSM

Janus Research

Oct 2021 - Aug 2023 (1 year 10 months)

Integrated security into DevSecOps CI/CD pipelines by automating SAST, SCA, IaC, secrets, and container/image scanning and enforcing policy-as-code gates for production deployments. Supported RMF/A&A activities by administering security controls, monitoring compliance artifacts (EMASS/POA&Ms, STIGs, IAVAs/CTOs), and performing continuous security monitoring with Nessus/ACAS and Burp Suite.

DevSecOpsCI CD SecuritySASTSCAPolicy as CodeNessusBurp suite
JA

Senior CND Analyst / ISSM Lead

Jacobs

Sep 2020 - Aug 2021 (11 months)

Supervised incident handling and served as ISSM, performing risk review with senior stakeholders and supporting policy/procedure compliance while working up to 72 hours/week. Conducted SOC incident investigations and threat hunting using Splunk and HBSS DLP, analyzed PCAP/proxy/firewall/OS logs for IOCs and root cause, and ran ACAS/Nessus scanning and produced ISSM artifacts (ETPs/MFRs) for A&A/RM

Incident ResponseMcAfee HBSSSplunkDLP InvestigationsForensics
TL

Team Lead Incident Handling & IR

Tribalco LLC

Mar 2016 - Sep 2018 (2 years 6 months)

Led a 6-person incident handling and response team (CND/IA) supporting 19K systems across 3 enclaves, providing CSSP services with high self-sufficiency (minimum 70 hours/week). Performed full-scope incident response and proactive threat hunting using ArcSight/SIEM, HBSS malware/DLP investigations, and IOC correlation to produce daily incident reporting and lessons-learned outputs.

Incident ResponseThreat HuntingArcSightMcAfee HBSSDLP (Cross Domain Violations)
VE

Security Systems Engineer (IA)

Vectrus

Jul 2015 - Mar 2016 (8 months)

Supported proactive vulnerability management and security compliance for classified/unclassified networks by running SCAP/QTIP, performing ACAS/Nessus scans, and auditing IA policy implementation. Assisted with ATO/POA&M and RMF/DIACAP documentation, directing IA processes on incidents and ensuring system scanning/traceability through required artifacts.

SCAPVulnerability ManagementSTIG ComplianceDIACAPPOA&M & ATO SupportSecurity Documents

Education

Degrees, certifications, and relevant coursework

Cochise College logoCC

Cochise College

Computer Science

Studying Computer Science at Cochise College in Sierra Vista, Arizona.

Tech stack

Software and tools used professionally

Splunk logo

Splunk

GitHub logo

GitHub

PHP logo

PHP

PowerShell logo

PowerShell

F# logo

F#

Logstash logo

Logstash

Kibana logo

Kibana

Wireshark logo

Wireshark

Linux logo

Linux

ws logo

ws

CrowdStrike logo

CrowdStrike

Notepad++ logo

Notepad++

Cherokee logo

Cherokee

Missions logo

Missions

ArcSight logo

ArcSight

Root Cause logo

Root Cause

SQL logo

SQL

ServiceNow logo

ServiceNow

Burp Suite logo

Burp Suite

Nmap logo

Nmap

Refine logo

Refine

Port logo

Port

Evidence logo

Evidence

Make

Dynamic logo

Dynamic

Task logo

Task

Sierra logo

Sierra

Factory logo

Factory

Matrix logo

Matrix

Objective logo

Objective

Remote logo

Remote

Proofpoint logo

Proofpoint

Falcon logo

Falcon

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Senior Cyber Threat Intelligence AnalystThreat HuntingIncident ResponseInformation Security AnalystCybersecurity GRCDevSecOps EngineerSenior Cybersecurity AnalystSenior Threat Detection AnalystSenior Cybersecurity Risk AnalystSenior Threat Intelligence SpecialistCyber Threat Intelligence AnalystSenior Security AnalystSenior Information Security Analyst

Skills

Incident ResponseThreat HuntingInsider Threat DetectionMalware AnalysisForensicsRisk & ComplianceRisk Management Framework (RMF)Information SecurityOSINTSIEMEDRCrowdStrike Falcon Cloud SecurityKibana DashboardsElastic SIEM (ELK Logstash Kibana)SplunkServiceNowTrellix Endpoint Security (ENS)Data Loss PreventionWiresharkNetwork Flow DataPowerShellPythonNessusACASBurp suiteSASTSCAInfrastructure As Code Security ScanningSecret DetectionContainer Image ScanningPolicy as CodeNIST 800 53OWASP Top 10ArcSightCherokeeCrowdstrikeDynamicEvidenceFactoryFalconGitHubKibanaLinuxLogstashMakeMatrixMissionsNmapNotepad++ObjectivePHPPortProofPointRefineRoot CauseSQLSierraTask Remote

Interested in hiring Jeremy?

You can contact Jeremy and 90k+ other talented remote workers on Himalayas.

Message Jeremy

People also viewed

View all talent

Find your dream job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan