This role supports U.S. Federal Government contracts requiring United States citizenship to protect enterprise and government SaaS environments
Job Summary
This role supports U.S. Federal Government contracts requiring United States citizenship to protect enterprise and government SaaS environments.
The engineer will develop high-fidelity detection logic using Splunk and AWS telemetry to reduce adversary dwell time in regulated cloud settings.
Workday offers a competitive salary range of $159,600 to $258,000 USD along with flexible work arrangements requiring at least half-time in-office presence.
Matching Summary
This role supports U.S. Federal Government contracts requiring United States citizenship to protect enterprise and government SaaS environments.
Salary
Base: $159,600 - $239,400 USD (McLean); Additional locations: $144,400 - $258,000 USD; Bonus/Equity: Eligible for Workday Bonus Plan and annual refresh stock grants
Skills & Requirements
Must-have
Splunk correlation searches and SPL development
FedRAMP High and DoD IL5 environment experience
AWS CloudTrail GuardDuty Inspector VPC Flow Logs
MITRE ATT&CK mapping and NIST SP 800-61r3 knowledge
Hypothesis-driven threat hunting in SaaS architectures
Nice-to-have
TS/SCI w/CI Poly security clearance preferred
Experience with air-gapped region detection strategies
Strong collaboration with Red and Purple Teams
Familiarity with secure logging in constrained environments
SOAR platform experience within controlled boundaries
Key Requirements
6+ years in cybersecurity operations or detection engineering
Bachelor's degree in Cybersecurity or Computer Science
Must be a United States citizen (naturalized or native)
Ability to obtain and maintain TS/SCI w/CI Poly clearance