Support one or more direct or indirect contracts with the U.S. Federal Government
Protect enterprise and U.S. Government SaaS environments operating under multiple authorization boundaries
Provide advanced monitoring, detection, threat hunting, and response across regulated cloud environments
Collaborate with SOC, Red Team, Blue Team, Purple Team, and Threat Intelligence
Engineer, validate, and continuously improve detection capabilities across FedRAMP High and IL5 cloud-native SaaS environments
Develop high-fidelity detection logic leveraging Splunk, Cloud-native telemetry, Identity and access telemetry, Endpoint and container telemetry, Vulnerability intelligence sources.

Requirements

6+ years of experience in cybersecurity operations, detection engineering, or threat hunting
Hands-on experience building detections in Splunk, including correlation searches and SPL development
Experience operating in FedRAMP, DoD IL4/IL5, or similarly regulated cloud environments
Experience working with AWS security services (CloudTrail, GuardDuty, Inspector, VPC Flow Logs)
Strong understanding of MITRE ATT&CK mapping and adversary tradecraft
Familiarity with NIST SP 800-61r3 incident response lifecycle
Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or equivalent experience

Benefits

Workday Bonus Plan
Role-specific commission/bonus
Annual refresh stock grants

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecurity operationsdetection engineeringthreat huntingSplunkcorrelation searchesSPL developmentAWS security servicesMITRE ATT&CKNIST SP 800-61r3vulnerability intelligence