26-1096: SEIM / Telemetry / Security Analytics Engineer - Herndon, VA
Tasks
- Author and version correlation searches
- Build and operate UEBA detections
- Conduct threat hunting
- Define CIM mappings
- Design and maintain SOAR playbooks
- Integrate UEBA risk scores into SOAR
- Lead log source onboarding
- Map correlation searches to MITRE ATT&CK
- Operate tune and extend Splunk Enterprise Security deployment
- Own security telemetry engineering
- Perform on-call rotation
- Produce ZTMM maturity evidence packets
- Support incident response
- Tune UEBA false positive rate
Perks/Benefits
- N/A
Skills/Tech-stack
800-53 | AWS CloudTrail | AWS GuardDuty | Azure Monitor | Azure Sentinel | Bash | CIM | CISA Zero Trust | CISA Zero Trust Maturity | CISA Zero Trust Maturity Model | Defender XDR | Detection-as-code | Enterprise Security | Exabeam | Flow Logs | Git | KQL | MITRE ATT&CK | MITRE Caldera | Maturity Model | Microsoft Defender | Microsoft Defender XDR | NIST SP | NIST SP 800 | NIST SP 800-53 | OpenTelemetry | Powershell | Python | REST APIs | SOAR | SP 800-53 | SPL | Sigma | Splunk | Splunk Enterprise | Splunk Enterprise Security | Swimlane SOAR | UEBA | VPC Flow Logs | VPC flow | Zero Trust Maturity Model | “as-code”
Education
Related jobs
-
Staff Site Reliability Engineer USD 119K-170KARP | Ansible | Bash | Ceph | DHCPEducation reimbursement | Health plans | Hybrid work | Parental leave options | Retirement optionsSenior-level Full TimeSan Jose, California, USA8h ago
-
Manager, Threat Detection and Response USD 187K-253KAWS | Alert triage | Antivirus | Cloud Security | Detection engineeringAI adoption guidance | Occasional off hours incident response supportMid-level Full TimeNew York, New York, United States8h ago
-
Senior Principal Software Engineer, AI Onboarding USD 137K-180KAWS | AWS Bedrock | AWS Glue | Agentic Frameworks | AntSenior-level Full TimeSan Francisco9h ago
-
Associate Principal Software Engineer, AI Onboarding USD 115K-194KADK | AWS | AWS Bedrock | AWS Glue | Agentic FrameworksMid-level Full TimeSan Francisco9h ago
-
Principal Software Engineer, AI Onboarding USD 150K-180KAWS | AWS Bedrock | AWS Glue | Amazon Q | AntSenior-level Full TimeSan Francisco9h ago
-
Mid-Level Systems Integration Engineer - TS/SCI w/Poly USD 110K-130KAWS | Ansible | Application administration | Bash | C#Mid-level Full TimeAnnapolis Junction, MD12h ago
-
Senior Software Engineer USD 173K-226KCI/CD | DevSecOps | Docker | Git | GitHubHybrid work | Security clearance supportSenior-level Full TimeHerndon, VA12h ago
-
800-171 | 800-53 | API Gateway | AWS | AWS Lambda401k | Paid leaveSenior-level Full TimeWashington, DC13h ago
-
Sr. SIEM Engineering Consultant USD 140K-180KAccess Management | Ansible | Azure | Azure Monitor | BashRemote work | Security clearance eligibility | Support for on site engagementsSenior-level Full TimeWork from home, VA, United States R14h ago
-
Sr. TORQ/SOAR Engineer USD 140K-190KAgentic Automation | Ansible | Automation workflows | CI/CD | Context ManagementRemote work | Travel for client visits | U S passport requirementSenior-level Full TimeWork from home, VA, United States R14h ago
-
Senior-level Full TimeWork from home, VA, United States R14h ago
-
Software Engineer USD 130K-250KAWS | Agile | Azure | C++ | CI/CD401k retirement plan | Continuing education support | Flexible work options | Health benefits | Paid HolidaysSenior-level Full TimeAnnapolis Junction, MD16h ago
-
System Engineer USD 139K-215K800-53 | Amazon Web Services | Body of Evidence | CNSS 1253 | Change Management401k match | Company-sponsored events | Competitive compensation | Flexible work environment | Fully paid life and disabilityMid-level Full TimeHerndon, VA17h ago
-
Senior Cybersecurity Pre-Sales Technical Architect USD 115K-195KAttack Surface Analysis | Attack surface | Cloud Security | Compliance Auditing | CybersecurityCompany culture | Health benefits | Life insurance | Pension plan | Professional developmentSenior-level Full TimeLisle, IL, US17h ago
-
Cybersecurity Systems Engineer USD 148K-263KA&A | ABAC | ATO | Access Management | Body of EvidenceHealth insurance | Holiday pay | Learning and development | Life insurance | Long-term disabilitySenior-level Full TimeUSA-Remote Work R19h ago
-
AI Security | Cross-Functional Collaboration | Cross-functional | Cybersecurity | Functional collaborationMid-level Full TimeBoulder, CO, USA20h ago
-
Senior Security Engineer USD 131K-169KAPI Security | AWS | Application Security | Attack Surface Reduction | Attack surface401k matching | Company-paid medical | Flexible spending account | Flexible time off | Great Place to Work cultureSenior-level Full TimeAustin, TX, United States; Chicago, IL, …22h ago
-
Software Engineer USD 100KAPIs | Distributed Systems | Go | Integration Testing | JavaDental insurance | Health insurance | Mentorship | Vision insuranceEntry-level Full TimeSanta Clara, California, United States1d ago
-
Software Engineer USD 100K-150KAPIs | Data Structures | Data Structures and Algorithms | Distributed Systems | GoBonus | Dental insurance | Equity | Health insurance | MentorshipEntry-level Full TimeSanta Clara, California, United States1d ago
-
AWS | AWS ECS | Ansible | Containerization | DockerEducation reimbursement | In-office perks | Parental leave options | Retirement options | Time off plansSenior-level Full TimeCrystal City, Virginia, USA1d ago
-
AI Application Security Engineer USD 198K-297KAccess Control | Application Security | Audit Logging | Authentication | Authorization401k | Commuter benefits | Daily lunches | Medical/Dental/Vision | Unlimited PTOMid-level Full TimeSan Francisco Bay Area1d ago
-
DevSecOps Engineer Senior USD 115K-191KAnsible | Automation | Configuration Management | Containerization | DevOps401k match | Life insurance | Medical/Dental/Vision | Paid Holidays | Paid time offSenior-level Full TimeAugusta, GA, United States1d ago
-
Manager, Security Engineering USD 125K-156KAccess Control | Access Management | Application Firewall | Automation | CI/CD401k | Business Casual Attire | Dental insurance | Disability insurance | Education assistanceMid-level Full TimeNashville, TN, United States1d ago
-
Systems Automation Engineer USD 62K-104KATO | AWS | Active Directory | Ansible | Automation Scripting401k match | Health, dental, and vision insurance | Life insurance | Paid Holidays | Paid time offSenior-level Full TimeColorado Springs, CO, United States1d ago
-
ForgeRock IAM Engineer USD 80K-128K800-63 | ABAC | AWS | Active Directory | Advanced Identity CloudMid-level Full TimeUnited States1d ago