Lead Engineer – Threat Hunting and Countermeasures (Remote Eligible)

Job Id: R0000384231

The pay range is $128,000.00 - $231,000.00

Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at https://corporate.target.com/careers/benefits.

JOIN TARGET CYBERSECURITY AS A LEAD ENGINEER - THREAT DETECTION AND COUNTERMEASURES

About Us

As a Fortune 50 company with more than 400,000 team members worldwide, Target is one of the world’s most recognized brands and one of America’s leading retailers. But behind the brand our guests love, is a culture of continual innovation – and right now, we are up to big things. The Cyber Fusion Center is the heart of Target’s security team and a place where innovation happens daily. Interested in a culture that combines invention and creative freedom, ongoing learning, engineering excellence, and stellar outcomes? We are, too – that’s why we work here. Join our team to take new enterprise security solutions from concept to release, collaborating with both software & security engineers to innovate on helping defend Target’s network using cutting-edge technologies.

About You

As a Lead Engineer on the Threat Hunting and Countermeasures team, you will proactively identify, investigate, and mitigate cyber threats targeting Target’s enterprise. Your focus will be on structured and hypothesis-driven hunting, leveraging threat intelligence, security analytics, and deep technical expertise to detect advanced threats that evade traditional security controls. You will also work on developing countermeasures, refining detection logic, and improving security visibility across Target’s environment. This role requires hands-on experience in threat hunting, threat intelligence, detection engineering, and cyber defense operations. You will collaborate with security teams, including incident response, detection engineering, and cyber threat intelligence, to identify evolving threats and enhance Target’s security posture.

Core Responsibilities:

• Conduct proactive threat hunts using hypothesis-driven methodologies, leveraging intelligence, SIEM data, and behavioral analytics.
• Analyze logs, network traffic, endpoint telemetry, and other data sources to identify malicious activities and adversary tactics.
• Develop and refine detection and visibility capabilities in collaboration with the detection engineering team.
• Investigate emerging threats, adversary techniques (MITRE ATT&CK, Kill Chain, etc.), and security incidents to create new hunt methodologies.
• Improve automation and operational efficiency of hunting workflows through scripting and security tools.
• Collaborate with red and blue teams to validate detection strategies and improve security coverage.
• Contribute to the development of threat models and proactive countermeasure strategies.
• Conduct research and analysis on adversary tradecraft to enhance Target’s threat hunting program.

Core responsibilities of this job are described within this job description. Job duties may change at any time due to business needs.

Required Skills:

• 4-year degree or equivalent experience in cybersecurity or related fields.
• 4+ years' of experience in cybersecurity, with a strong focus on threat hunting, detection engineering, security operations, or incident response.
• 2+ years’ experience in developing detections based on threat intelligence and adversary behaviors.
• Strong familiarity with SIEM systems, EDR solutions, and security data analytics.
• Experience in scripting with Python, PowerShell, JavaScript, or shell scripting to automate security tasks and enhance threat hunting operations.
• Deep understanding of adversary tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK and the Cyber Kill Chain.
• Strong analytical and problem-solving skills with the ability to interpret large datasets to identify malicious activities.
• Strong communication skills with the ability to navigate ambiguity and collaborate across security teams.

Desired Skills (not required but a plus):

• Experience with deception techniques, honeytokens, or other adversary engagement strategies.
• Background in malware analysis, reverse engineering, exploit development, forensic techniques, or network security monitoring.
• Certifications such as GREM, GCFA, or similar in advanced threat hunting and analysis.

This position may be considered for a Remote or Hybrid (known internally at Target as "Flex for Your Day") work arrangement based on Target's needs.  A Remote work arrangement means the team member works full-time from home or an alternate location that's not a Target location, does not have a desk at a Target location and may travel to HQ up to 4 times a year.  A Hybrid/Flex for Your Day work arrangement means the team member's core role may be performed either remote or onsite at a Target location depending upon what your role, team and tasks require for that day. Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target.

Benefits Eligibility

Please paste this url into your preferred browser to learn about benefits eligibility for this role: https://tgt.biz/BenefitsForYou_E

Americans with Disabilities Act (ADA)

In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to candidate.accommodations@HRHelp.Target.com.Application deadline is : 03/30/2025