🛠 Tech Stack

💼 About This Role

You'll lead security operations for a U.S. Federal contractor, designing detection pipelines and incident response capabilities. You'll protect hybrid on-premises/cloud environments using SIEM, EDR, and threat hunting. This role offers direct impact on national security missions.

🎯 What You'll Do

• Design and tune IDS/IPS, SIEM, EDR, and log collection pipelines
• Establish and implement incident-handling capability for organizational systems
• Proactively hunt for threats using threat intelligence and custom tooling
• Coordinate vulnerability scanning, assess risk, and validate fixes

📋 Requirements

• 12+ years of hands-on experience in security operations or incident response
• Strong knowledge of SIEM platforms (Splunk, Elastic, Sentinel) and EDR tools
• Experience with hybrid on-premises/cloud AWS/Azure environments
• Proficiency with scripting languages like Bash or Python