This role supports U.S. Federal Government contracts requiring United States citizenship and operates within high-security FedRAMP High and DoD IL5 cloud environments
Job Summary
This role supports U.S. Federal Government contracts requiring United States citizenship and operates within high-security FedRAMP High and DoD IL5 cloud environments.
The engineer is responsible for engineering, validating, and improving detection capabilities using Splunk and cloud-native telemetry to reduce adversary dwell time.
Workday offers a competitive salary range of $159,600 to $239,400 USD along with flexible work arrangements requiring at least 50% time in-office or field.
Matching Summary
This role supports U.S. Federal Government contracts requiring United States citizenship and operates within high-security FedRAMP High and DoD IL5 cloud environments.
Salary
Base: $159,600 - $239,400 USD; Bonus/Equity: Eligible for Workday Bonus Plan and annual refresh stock grants; Benefits: Comprehensive benefits package including flexible work options
Skills & Requirements
Must-have
Splunk correlation searches and SPL development
AWS CloudTrail GuardDuty Inspector VPC Flow Logs
MITRE ATT&CK mapping and NIST SP 800-61r3
FedRAMP High and DoD IL5 regulated environments
Air-gapped region detection strategies
Nice-to-have
Hypothesis-driven threat hunting in SaaS
Identity-based attack vector detection
Container and workload-level attack detection
SOAR platform experience in constrained automation
Secure logging architectures for disconnected environments
Key Requirements
6+ years in cybersecurity operations or detection engineering
Bachelor's degree in Cybersecurity, Computer Science, or Engineering
Ability to obtain and maintain TS/SCI w/CI Poly clearance
Must be a United States citizen (naturalized or native)