Threat Hunting & Detection Engineer (us Federal)

Workday

McLean, VA, USA
Base: $159,600 - $239,400 usd; bonus/equity: eligi...
Fully remote
6+ years cybersecurity operations experience
Splunk correlation searches and spl development
Fedramp high or dod il4/il5 environment experience
This role supports U.S. Federal Government contracts requiring United States citizenship and potentially a TS/SCI w/CI Poly clearance

Job Summary

  • This role supports U.S. Federal Government contracts requiring United States citizenship and potentially a TS/SCI w/CI Poly clearance.
  • The engineer will design detection strategies for FedRAMP High and IL5 cloud-native SaaS environments including air-gapped regions.
  • Workday offers flexible work arrangements requiring at least half of the time to be spent in-office or with customers.

Matching Summary

This role supports U.S. Federal Government contracts requiring United States citizenship and potentially a TS/SCI w/CI Poly clearance.

Salary

Base: $159,600 - $239,400 USD; Bonus/Equity: Eligible for Workday Bonus Plan and stock grants; Benefits: Comprehensive benefits package available

Skills & Requirements

Must-have

  • 6+ years cybersecurity operations experience
  • Splunk correlation searches and SPL development
  • FedRAMP High or DoD IL4/IL5 environment experience
  • AWS security services CloudTrail GuardDuty Inspector
  • MITRE ATT&CK mapping and NIST SP 800-61r3 knowledge

Nice-to-have

  • Hypothesis-driven threat hunting in SaaS architectures
  • Identity-based attack vector detection expertise
  • Container and workload-level attack detection
  • SOAR platform experience in constrained environments
  • Secure logging architecture in air-gapped settings

Key Requirements

  • United States citizenship required
  • TS/SCI w/CI Poly security clearance preferred
  • Bachelor's degree in Cybersecurity or equivalent
  • 6+ years experience in detection engineering

Work Rights

Must have US citizenship

Tailored Resume

Cover Letter