Threat Hunting & Detection Engineer (us Federal)

Workday

McLean, Virginia, USA
Base: $159,600 - $239,400 usd (mclean); base: $144...
Fully remote
Splunk correlation searches and spl development
Fedramp high and dod il5 environment experience
Aws security services cloudtrail guardduty inspector
This role supports U.S. Federal Government contracts requiring personnel to be United States citizens

Job Summary

  • This role supports U.S. Federal Government contracts requiring personnel to be United States citizens.
  • The engineer will develop high-fidelity detection logic across FedRAMP High and IL5 cloud-native SaaS environments including air-gapped regions.
  • Workday offers a flexible work approach combining in-person time with remote flexibility while providing competitive compensation and benefits.

Matching Summary

This role supports U.S. Federal Government contracts requiring personnel to be United States citizens.

Salary

Base: $159,600 - $239,400 USD (McLean); Base: $144,400 - $258,000 USD (Other US locations); Bonus/Equity: Eligible for Workday Bonus Plan and stock grants

Skills & Requirements

Must-have

  • Splunk correlation searches and SPL development
  • FedRAMP High and DoD IL5 environment experience
  • AWS security services CloudTrail GuardDuty Inspector
  • MITRE ATT&CK mapping and NIST SP 800-61r3 knowledge
  • 6+ years cybersecurity operations or threat hunting

Nice-to-have

  • Hypothesis-driven threat hunting in SaaS architectures
  • Identity-based attack vector detection expertise
  • Container and workload-level attack detection
  • SOAR platform experience in constrained boundaries
  • Secure logging architecture in air-gapped environments

Key Requirements

  • United States citizenship required
  • TS/SCI w/CI Poly security clearance preferred
  • Bachelor's degree in Cybersecurity or equivalent experience
  • 6+ years of experience in cybersecurity operations

Work Rights

Must have US citizenship

Tailored Resume

Cover Letter