Threat Hunting Intern

Are you applying to the internship?

Job Description

INTERNSHIP – Threat Hunter – REMOTE | Totem Market Valuations

The Tone:
This is an internship at Totem Market Valuations, located remotely. The role supports cybersecurity teams that operate within a leading Managed Detection and Response (MDR) provider, trusted by hundreds of organizations to protect what matters most. This position is a hands-on learning opportunity designed to build technical skills in digital forensics, network defense, and incident response, directly contributing to the proactive search for hidden threats.

The TL;DR
• Role: Internship
• Location: Remote

• Team: Part of a cybersecurity team, assisting senior Threat Hunters, alongside SOC analysts, detection engineers, and threat researchers.
• Mission: Actively and proactively search for hidden threats or attacker footprints that bypass automated security controls.
• Tech Stack: Splunk, Elastic, CrowdStrike, SentinelOne, Microsoft Defender, YARA, SQL

What You’ll Actually Do
• Proactive Hunting: Assist senior hunters in running searches across endpoints and networks to uncover hidden threats, unusual behavior, and stealthy malware.
• Data Analysis: Review and analyze security logs and telemetry to identify anomalies or potential indicators of compromise (IOCs).
• Rule Development: Help create, test, and write new threat detection rules (such as YARA or SQL-based logic) to improve security visibility.
• Threat Research: Keep up to date on major global cyber threats and assist in mapping attacker Tactics, Techniques, and Procedures (TTPs).
• Reporting: Help review search findings, separate benign events from actual threats, and draft technical reports for senior analysts.

The Must-Haves
• Background: Currently pursuing a bachelor’s degree or master’s degree in Cybersecurity, Computer Science, or Information Technology, with a basic understanding of networking principles, operating systems (Windows, Linux, or macOS), and common cyber-attack methods.
• Experience: Familiarity with scripting languages (like Python) and basic query languages.
• Skills: Strong analytical thinking, curiosity, a drive to learn, and the ability to explain technical findings.
• Bonus: Familiarity with cybersecurity frameworks like MITRE ATT&CK.