Threat Hunting & Detection Engineer (US Federal)
Tasks
- Align detection analytics to MITRE ATTACK
- Apply NIST 800-61 incident response principles
- Collaborate with SOC to reduce false positives
- Collaborate with red team to validate detections
- Collaborate with security engineers on log integrity
- Collaborate with threat intelligence to operationalize reporting
- Design detections for air gapped environments
- Develop correlation searches
- Engineer detection capabilities
- Improve detection coverage
- Optimize SPL
- Support audit traceability
- Support continuous monitoring compliance
- Validate detection logic
Perks/Benefits
Skills/Tech-stack
AWS CloudTrail | Access Management | Air-gapped | Air-gapped environments | Cloud Security | Container Security | Correlation Search | Detection engineering | Flow Logs | GuardDuty | Identity and Access Management | Identity and access | Inspector | Log Integrity | Mitre Attack | NIST 800 | NIST 800-61 | SOAR | SPL | Splunk | Threat hunting | VPC Flow Logs | VPC flow
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Senior Security Engineer, Google Public Sector USD 174K-252K800-171 | 800-53 | Access Management | Ansible | Cloud platformUp to 25 percent domestic travelSenior-level Full TimeReston, VA, USA; Colorado, USA2h ago
-
Security Engineer USD 186K-320KAWS GuardDuty | EDR | Encryption | ISO 27001 | Incident ResponseHealth and wellness resources | Remote work flexibility | Vacation and personal timeSenior-level Full TimeAustin, Texas9h ago
-
Sr. Cloud Security Engineer/Architect USD 130K-220KAWS | Access Management | Alerting | Azure | CI/CD401k plan | Employee assistance program | Employee stock purchase plan | Life, accident, and disability insurance | Medical/Dental/Vision insuranceSenior-level Full TimeMilpitas, CA, United States10h ago
-
Data Protection Engineer (Trellix) USD 104K-166KAir-gapped | Air-gapped environments | Clipboard | Data Classification | Data Loss PreventionSenior-level Full TimeTampa, FL10h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector mitigation | CI/CD | Cloud Security | Endpoint SecurityCommuter benefits | Health insurance | Paid time off | Professional development reimbursement | Relocation assistanceSenior-level Full TimeAshville, Ohio, United States11h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector analysis | CI/CD | Cloud Security | Continuous DeploymentCaregiver & wellness leave | Commuter benefits | Family planning and parenting support | Generous time off | Healthcare benefitsSenior-level Full TimeCosta Mesa, California, United States11h ago
-
Senior Product Security Engineer USD 160K-250KCI/CD | Cloud Security | Cybersecurity infrastructure | Detection engineering | EDRSenior-level Full TimeUS - San Francisco11h ago
-
Staff Engineer, Identity & Access Management (IAM) USD 180K-212KABAC | Access Management | Active Directory | Adaptive Authentication | C++Senior-level Full TimeSalt Lake City, Utah R12h ago
-
Product Infrastructure Security Engineer USD 135K-200KAutomation | Cloud Security | Distributed Systems | Go | Incident Response401k plan | Back-up care subsidy | Commuter benefits | Disability insurance | Fertility and family building benefitsSenior-level Full TimeSeattle, WA14h ago
-
Product Infrastructure Security Engineer USD 135K-200KAutomation | Cloud Security | Distributed Systems | Golang | Incident Response401k plan | Commuter benefits | Hybrid work options | Life AD&D and disability insurance | Medical/Dental/Vision insuranceSenior-level Full TimePalo Alto, CA14h ago
-
Product Infrastructure Security Engineer USD 135K-200KAutomation | Cloud Security | Distributed Systems | Incident Response | Infrastructure Scanning401k | Commuter benefits | Dental insurance | Disability insurance | Hybrid workSenior-level Full TimeWashington, D.C.14h ago
-
Product Infrastructure Security Engineer USD 135K-200KAutomation | Cloud Security | Distributed Systems | Incident Response | Kubernetes401k plan | Commuter benefits | Dental insurance | Disability insurance | Hybrid workSenior-level Full TimeRemote: US - East R14h ago
-
Senior Software Engineer, Identity USD 191K-253KABAC | AWS | AWS CDK | Access Management | Active DirectoryCaregiver leave | Commuter benefits | Dental insurance | Family planning and parenting support | Health insuranceSenior-level Full TimeWashington, District of Columbia, United States14h ago
-
Senior Level Systems Engineer USD 170KAWS | Confluence | Elasticsearch | Forward Networks | Linux401k match | Career development | Disability insurance | Federal Holidays | Health savings accountSenior-level Full TimeFort Meade, MD, US14h ago
-
Staff Threat Research Engineer USD 162K-190KAI Security | AWS | Azure | Cloud Security | Cloud log analysisSenior-level Full TimeRemote, USA R15h ago
-
AWS VPC | Agile | Ansible | Automation | Azure NSGHybrid scheduleMid-level Contract Full TimeAlpharetta, Georgia, United States18h ago
-
System Engineer 3 USD 74K-145KAmazon Web Services | Confluence | Elasticsearch | Event management | LinuxDental insurance | Employee assistance benefits | Employee referral bonus | Flexible PTO | Health savings accountMid-level Full TimeFt. Meade, Maryland18h ago
-
Sr Solutions/Presales Engineer USD 150K-180KAccess Management | Amazon Web Services | Cloud Computing | Cloud platform | Data Loss PreventionEmployer provided health insurance | Employer-sponsored 401k | Equity participation | Flexible PTO | Learning and developmentSenior-level Full TimeSan Francisco R20h ago
-
Principal Cyber Defense Engineer USD 126K-243KAutomation | Bash | Cloud Native | Cloud Native Application Protection Platform | Cloud native applicationSenior-level Full TimeWashington, DC22h ago
-
Enterprise Security Engineer USD 150K-250KAWS | Access Management | Cloud platform | Configuration Drift | Configuration Drift DetectionMid-level Full TimeLondon, United Kingdom; New York, NY, …22h ago
-
Security Engineer - GRC USD 83K-109K800-171 | 800-53 | AI Risk Management Framework | AWS | Access requests401k match | Home Technology Stipend | Paid Holidays | Parental leave | Unlimited PTOMid-level Full TimeRemote, US R23h ago
-
Lead Cyber Threat Intelligence Engineer USD 186K-215KAlert enrichment | Analytic techniques | Automation | Cyber Kill Chain | Cyber ThreatSenior-level Full TimeWA - Seattle; UT - Cottonwood …1d ago
-
Application DevSecOps Engineer USD 85K-110KAPI Security | AWS | AWS Secrets | AWS Secrets Manager | AWS SecurityMid-level Full TimeGrand Rapids, MI, United States1d ago
-
Junior Information System Security Engineer USD 63K-105KATO | Access Control | Access Management | Boundary change requests | Change RequestsEntry-level Full TimeUSA-VA-Virginia Beach1d ago
-
Engineer/Sr Engineer, IT Aviation Cybersecurity USD 34K-49K800-171 | 800-53 | Access Management | Active Directory | Agile401k program | Dental insurance | Discounts on Hotels | Employee assistance program | Flexible spending accountsSenior-level Full TimeFort Worth, TX, US1d ago