This role serves as the primary intelligence integration point between customer stakeholders, Workday Security teams, and external intelligence organizations to enhance security posture across government SaaS environments
Job Summary
This role serves as the primary intelligence integration point between customer stakeholders, Workday Security teams, and external intelligence organizations to enhance security posture across government SaaS environments.
The position requires translating threat intelligence into actionable insights, detection requirements, and hunting hypotheses to support SOC monitoring and detection engineering.
Workday is a Fortune 500 company offering a culture rooted in integrity, empathy, and shared enthusiasm with flexible work arrangements requiring at least 50% time in-office or field.
Matching Summary
This role serves as the primary intelligence integration point between customer stakeholders, Workday Security teams, and external intelligence organizations to enhance security posture across government SaaS environments.
Salary
Base: $130,200 - $195,400 USD (McLean); Base: $117,800 - $210,000 USD (Other locations); Bonus/Equity: Eligible for Workday Bonus Plan and annual refresh stock grants
Skills & Requirements
Must-have
7+ years cybersecurity experience
MITRE ATT&CK framework mapping
SOC operations and detection engineering
Adversary tactics and techniques knowledge
Executive and technical briefing skills
Nice-to-have
SaaS platform experience in government networks
CISA, NSA, and NIST guidance familiarity
Intelligence platforms like MISP
Strategic thinking and operational rigor
Collaborative team culture fit
Key Requirements
United States citizenship required
7+ years in cybersecurity or incident response
Clearance eligibility
Experience supporting SOC operations
Ability to brief technical and executive audiences