Threat Hunting & Detection Engineer (us Federal)

Workday

McLean, VA, USA
Base: $159,600 - $239,400 usd; bonus/equity: eligi...
Fully remote
Splunk correlation searches and spl development
Fedramp high and dod il5 environment experience
Aws cloudtrail guardduty inspector vpc flow logs
This role supports U.S. Federal Government contracts requiring personnel to be United States citizens

Job Summary

  • This role supports U.S. Federal Government contracts requiring personnel to be United States citizens.
  • The engineer will develop high-fidelity detection logic leveraging Splunk and cloud-native telemetry across FedRAMP High and IL5 environments.
  • Workday offers a flexible work approach where teams spend at least half of their time each quarter in the office or field.

Matching Summary

This role supports U.S. Federal Government contracts requiring personnel to be United States citizens.

Salary

Base: $159,600 - $239,400 USD; Bonus/Equity: Eligible for Workday Bonus Plan and annual refresh stock grants; Benefits: Comprehensive benefits package available

Skills & Requirements

Must-have

  • Splunk correlation searches and SPL development
  • FedRAMP High and DoD IL5 environment experience
  • AWS CloudTrail GuardDuty Inspector VPC Flow Logs
  • MITRE ATT&CK mapping and adversary tradecraft
  • NIST SP 800-61r3 incident response lifecycle

Nice-to-have

  • Hypothesis-driven threat hunting in SaaS architectures
  • Identity-based attack vector detection expertise
  • Container and workload-level attack detection
  • Secure logging in air-gapped environments
  • SOAR platform experience within constrained boundaries

Key Requirements

  • 6+ years of cybersecurity operations or detection engineering experience
  • Bachelor's degree in Cybersecurity, Computer Science, Engineering, or equivalent
  • Ability to obtain and maintain TS/SCI w/CI Poly security clearance
  • Must be a United States citizen (naturalized or native)

Work Rights

Must have US citizenship

Tailored Resume

Cover Letter