This role supports U.S. Federal Government contracts requiring United States citizenship and mandates work in high-security SaaS environments
Job Summary
This role supports U.S. Federal Government contracts requiring United States citizenship and mandates work in high-security SaaS environments.
The engineer is responsible for engineering, validating, and continuously improving detection capabilities across FedRAMP High and IL5 cloud-native environments.
Workday offers a competitive compensation package including base salary ranges from $144,400 to $258,000, along with bonus plans and stock grants.
Matching Summary
This role supports U.S. Federal Government contracts requiring United States citizenship and mandates work in high-security SaaS environments.
Salary
Base: $159,600 - $239,400 USD (McLean); Base: $144,400 - $258,000 USD (Other US locations); Bonus/Equity: Eligible for Workday Bonus Plan and annual refresh stock grants
Skills & Requirements
Must-have
Splunk correlation searches and SPL development
AWS CloudTrail GuardDuty Inspector VPC Flow Logs
FedRAMP High and DoD IL5 regulatory frameworks
MITRE ATT&CK mapping and adversary tradecraft
NIST SP 800-61r3 incident response lifecycle
Nice-to-have
Hypothesis-driven threat hunting in SaaS architectures
Identity-based attack vector detection expertise
Container and workload-level attack detection
SOAR platform experience in constrained environments
Secure logging architecture in air-gapped settings
Key Requirements
6+ years of cybersecurity operations or detection engineering experience
Active TS/SCI w/CI Poly security clearance preferred
Must be a United States citizen (naturalized or native)
Bachelor's degree in Cybersecurity, Computer Science, Engineering, or equivalent