ZipRecruiter

Log In

1

High Threat Protection Jobs (NOW HIRING)

Shorepoint Inc.

Threat Hunter

Herndon, VA · On-site

... high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates ...

Shorepoint Inc.

Threat Hunter

Herndon, VA

... high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates ...

next page

Showing results 1-20

People also search for

All JobsHigh Threat Protection Jobs

High Threat Protection information

See salary details

$47

$60

$72

How much do high threat protection jobs pay per hour?

As of May 29, 2026, the average hourly pay for high threat protection in the United States is $60.46, according to ZipRecruiter salary data. Most workers in this role earn between $55.77 and $65.87 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a High Threat Protection Specialist, and why are they important?

To thrive as a High Threat Protection Specialist, you need a background in security or law enforcement, advanced firearms proficiency, defensive tactics, and often military or specialized security training. Familiarity with communication devices, surveillance systems, armored vehicles, and certifications such as Executive Protection or Close Protection are typically required. Exceptional situational awareness, quick decision-making, teamwork, and discretion are crucial soft skills for this role. These qualities are vital to effectively anticipate, prevent, and respond to threats while safeguarding clients in high-risk environments.

What are the typical team dynamics and communication protocols for professionals working in High Threat Protection roles?

High Threat Protection teams typically operate with a strong emphasis on coordination, clear communication, and rapid response. Members regularly participate in detailed briefings, debriefings, and situation updates to ensure everyone is aligned on objectives and potential threats. Effective communication—both verbal and non-verbal—is crucial, as team members must quickly relay critical information during high-pressure situations. Collaboration with other security personnel, local authorities, and clients is common, requiring strong interpersonal skills and the ability to adapt to changing environments.

What is high threat protection?

High threat protection refers to specialized security services provided to individuals, groups, or assets facing elevated risks due to factors like political exposure, high-profile status, or operating in dangerous environments. Professionals in this field, often with military or law enforcement backgrounds, are trained to assess threats, plan secure movements, and respond effectively to emergencies. Their work can include executive protection, secure transportation, and crisis management in hostile or unstable regions. High threat protection teams prioritize discretion, adaptability, and advanced tactical skills to ensure the safety of their clients.

What is the difference between High Threat Protection vs Security Guard?

AspectHigh Threat ProtectionSecurity Guard
CertificationsClose protection, threat assessment, emergency responseSecurity officer training, basic security certifications
Work EnvironmentHigh-risk areas, VIP protection, conflict zonesCommercial, residential, event venues
Employer & IndustryPrivate security firms, government agencies, high-profile clientsSecurity companies, retail, corporate buildings

High Threat Protection and Security Guard roles differ mainly in scope and environment. High Threat Protection involves safeguarding high-profile individuals in risky settings, requiring specialized training. Security Guards typically work in more controlled environments like malls or offices, with basic security certifications. Both roles are vital but serve different security needs.

More about High Threat Protection jobs
What states have the most High Threat Protection jobs? States with the most job openings for High Threat Protection jobs include:
What job categories do people searching High Threat Protection jobs look for? The top searched job categories for High Threat Protection jobs are:
High Threat Protection jobs near you
Infographic showing various High Threat Protection job openings in the United States as of May 2026, with employment types broken down into 84% Full Time, 12% Part Time, and 4% Contract. Highlights an 100% Physical job distribution, with an average salary of $125,752 per year, or $60.5 per hour.
Threat Hunter

Threat Hunter

Shorepoint Inc.

Herndon, VA • On-site

Full-time

Medical, Retirement, PTO

Posted 12 days ago

Job description

Who we are:
ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.
The Perks:
As recognized members of the Cyber Elite, we work together in partnership to defend our nation's critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 144 hours of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.
Who we're looking for:
We are seeking a Threat Hunter to support and enhance our 24/7 Security Operations Center. This role combines advanced threat detection, incident investigation and threat hunting with hands-on development of SIEM use cases, automation and analytics to identify and respond to sophisticated threats, including lateral movement. The ideal Threat Hunter brings strong investigative expertise and a builder mindset to continuously improve detection capabilities and strengthen overall SOC effectiveness. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.
What you'll be doing:
  • Provide first-line SOC support, including alert monitoring, triage, routing, escalation and response across 24x7x365 operations.
  • Monitor, analyze and investigate security events, network traffic and host-based detections, distinguishing malicious activity from false positives.
  • Perform proactive and creative threat hunting and anomaly detection across SIEM and security tools, identifying patterns, lateral movement and emerging threats.
  • Conduct incident investigation, Cyber Threat Assessment and Remediation Analysis, including processing and correlating incident indicators with threat intelligence.
  • Tune and develop SIEM correlation rules and detection logic and rapidly build detection use cases in collaboration with incident response (IR) teams.
  • Develop and maintain scripts and tools (Python, Bash) to automate SOC and IR functions, including Indicator of compromise (IoC) ingestion, log processing and SIEM integrations via APIs.
  • Research, develop and maintain dashboards, visualizations and analytics to support detection, reporting and SOC performance monitoring.
  • Produce, review and maintain documentation and reporting, including cybersecurity briefings, metrics, incident reports and deliverables for stakeholders at all levels, ensuring alignment with editorial standards and government specifications.
  • Support threat intelligence operations, including reviewing and actioning IoCs and translating intelligence into actionable detections.
  • Coordinate with internal teams and stakeholders to support engagements such as Insider Threat, Rule of Engagement (ROE), threat hunting, testing activities and after-action reporting.
  • Support SOC operations processes, including ticket tracking, customer security assessments, ad hoc investigations, tabletop exercises and lessons learned activities.
  • Contribute to continuous SOC improvement by enhancing detection capabilities, processes, communication and overall operational effectiveness; participate in on-call rotation.

What you need to know:
  • Deep understanding of cyber threat TTPs, threat hunting methodologies and application of the MITRE ATT&CK framework.
  • Experience supporting 24x7x365 SOC operations, including alert monitoring, triage, analysis, response and review/action of threat intelligence and reported incidents.
  • Ability to manage multiple alerts and tickets in parallel, perform end-to-end triage through resolution and appropriately prioritize response actions including coordination with end-users.
  • Strong experience analyzing and correlating security events across multi-source ecosystem, including endpoint, network, email security tools, SIEM platforms and federal threat intelligence (e.g., CISA).
  • Demonstrated proficiency with enterprise security tools and platforms, including but not limited to FireEye, Elastic, Sourcefire, Malwarebytes, Carbon Black/Bit9, Splunk, Prisma Cloud, Cisco IronPort, Bluecoat, Palo Alto, Cylance and OSSEC.
  • Hands-on experience with enterprise SIEM or security analytics platforms (e.g., Elastic Stack, Splunk), including log analysis, event correlation and detection support.
  • Experience with malware analysis and understanding of attack vectors involving malware, data exposure, phishing and social engineering techniques.
  • Experience developing and maintaining SOPs, performing event timeline analysis and investigating logs across Windows/Linux environments and network security devices.

Must have's:
  • 5+ years of technical experience.
  • Ability to support working hours: 8:45 AM - 5:15 PM Eastern Time
  • Ability to participate in a rotating SOC on-call; rotation is based on number of team members.
  • Demonstrated proficiencies with one or more toolsets such as Bit9/CarbonBlack, CrowdStrike, FireEye ETP, Elastic Kibana.
  • Solid understanding and experience analyzing security events generated from security tools and devices such as: Carbon Black, CrowdStrike, FireEye, Palo Alto, Cylance and OSSEC.
  • Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
  • Applicants must currently be a U.S. citizen in compliance with federal contract requirements

Beneficial to have:
  • Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
  • One or more of the following certifications: GIAC (GCIH, GCFE, GCFA, GREM, GNFA, GCTI, GPEN, GWAPT), CEPT, CASS, CWAPT or CREA.

Where it's done:
  • Remote (Herndon, VA)

Apply