Senior Splunk Detection Engineer

Overview

Edgewater Federal Solutions is currently seeking a Senior Detection Engineer to provide support to an Edgewater Federal government contract. The Senior Splunk Detection Engineer will be leading the detection strategy for a large government enterprise. They will help create a robust proactive approach for detecting a wide variety of threats utilizing a range of cyber security tools and data sources.

Responsibilities

• Implement and lead detection engineering program
• Identify detection gaps, make recommendations for addressing those gaps and track projects to completion
• Evaluate data sources and data quality and make recommendations for improvements
• Drive the maturity of the detection engineering capability forward
• Lead a team of 2 to 5 junior detection engineers
• Contribute to the integration of detection engineering with other cybersecurity capabilities, such as SOC, IR, CTI, Threat Hunt and Red Teams
• Acts as a Subject Matter Expert in Splunk. Provide Analyst training and workshops on using Splunk. Make recommendations for best practices in developing Splunk detection content.

Qualifications

• Bachelor’s degree in a technical field and 10 years’ experience. (Additional education and/or experience may reduce these requirements)
• At least 5+ years in a detection engineering role
• U.S. Citizenship is required per contract to obtain and maintain a U.S. Security clearance.
• Splunk Experience
  • Splunk expert with years of hands-on experience
  • Develop and maintain quality queries, dashboards, custom views, saved searches and alerts for internal technical operations team business application owners
  • Experience with Splunk Enterprise Security
  • Strong understanding of data normalization concepts and how to implement them in Splunk
• Detection Engineering Experience
  • Expert level understanding of a variety of detection strategies and how to implement them in a large enterprise organization
  • Solid understanding of Mitre ATT&CK and how to map detection coverage
  • Experience working in a Detection as Code environment
  • Thorough understanding of modern cybersecurity threats against large enterprise organizations including cloud, identity, endpoint and network
• Leadership Experience
  • Experience leading small teams of cybersecurity professionals.
  • Strong analytical, documentation, and communication skills and the ability to collaborate well in a dynamic team environment.

Desired Qualifications

• Relevant Splunk certifications
• Network signature creation
• Knowledge of KQL
• Experience with a variety of EDR tools
• Familiarity with other SIEM platforms
• Cybersecurity automation and scripting using Python
• Tool integration and event correlation with differing API’s
• Previous experience working in a 24x7 SOC environment
• Previous experience in Incident Response roles

Salary : $150,000.00 - $200,000.00

Additional Benefits:

• Paid Time Off & Holiday Pay
• Medical Insurance
• Dental Insurance
• Vision Insurance
• Disability, Life Insurance, and AD&D
• Flexible Spending Accounts
• Pre-Tax 401K and/or After-Tax Roth IRA (with employer matching contribution)
• Tuition and Technical Training Reimbursement
• Exercise Reimbursement
• Computer Reimbursement
• Employee Assistance Program

About Us:

Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2024.

It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other statuses protected by applicable law.#LI-KC1