This role supports U.S. Federal Government contracts requiring United States citizenship and involves protecting enterprise and government SaaS environments
Job Summary
This role supports U.S. Federal Government contracts requiring United States citizenship and involves protecting enterprise and government SaaS environments.
The engineer will develop high-fidelity detection logic using Splunk and cloud-native telemetry to reduce adversary dwell time in regulated cloud environments.
Workday offers a competitive salary range of $159,600 to $258,000 USD along with flexible work arrangements requiring at least half-time presence in the office or field.
Matching Summary
This role supports U.S. Federal Government contracts requiring United States citizenship and involves protecting enterprise and government SaaS environments.
Salary
Base: $159,600 - $239,400 USD; Bonus/Equity: Eligible for Workday Bonus Plan and annual refresh stock grants; Benefits: Comprehensive benefits package described as accessible and inclusive
Skills & Requirements
Must-have
Splunk correlation searches and SPL development
FedRAMP High and DoD IL5 compliance experience
AWS CloudTrail GuardDuty Inspector telemetry
MITRE ATT&CK mapping and adversary tradecraft
NIST SP 800-61r3 incident response lifecycle
Nice-to-have
Hypothesis-driven threat hunting in SaaS
Identity-based attack vector detection
Container and workload-level attack detection
SOAR platform experience in constrained environments
Secure logging architectures in air-gapped settings
Key Requirements
6+ years in cybersecurity operations or detection engineering
Bachelor's degree in Cybersecurity, Computer Science, or Engineering
Active TS/SCI w/CI Poly security clearance preferred
Must be a United States citizen (naturalized or native)