Job Description

Salary 101,400 - 183,300 USD per year

Requirements:

- - Active DoD Secret security clearance and ability to obtain TS/SCI.
- DoD 8570 IAT level II or higher certification such as CompTIA Security+ CE, ISC2 SSCP, or SANS GSEC prior to starting.
- DoD 8570 CSSP-A level Certification such as CEH, CySA+, or GCIA required within 180 days of hire.
- Demonstrated commitment to training, self-study, and maintaining proficiency in the technical cyber security domain.
- Bachelor's degree and 8+ years of prior relevant experience; additional work experience or Cyber courses/certifications may be substituted in lieu of degree.
- In-depth knowledge of architecture, engineering, and operations of Elastic Stack.
- Strong written and oral communication skills with strong analytical and troubleshooting skills.
- Ability to think critically and work independently.

Responsibilities:

- - Monitor and optimize the performance of Elastic Stack clusters to ensure high availability, reliability, and performance.
- Collaborate with the site threat emulation and analytic development team to maximize detection opportunities referenced to the MITRE ATT&CK framework.
- Support customer-driven visualization requirements and collaborate on data integration and Kibana dashboard development.
- Design, develop, and maintain custom dashboards using Elastic Stack for monitoring and visualization of system metrics, logs, and traces.
- Create and maintain comprehensive documentation for Elastic Stack configurations, processes, and procedures.

Technologies:

- Bash
- ElasticSearch
- Support
- Kibana
- Linux
- Network
- PowerShell
- Python
- Security
- TCP/IP
- Unix

More:

At Leidos, we are looking for a Senior Cyber Security Analyst/Elastic Detection Engineer who specializes in data integration, model development, and system architecture. The focus of this role is to work with the Elastic Stack (Elasticsearch, Logstash, Kibana) to develop, manage, and support scalable search and analytics solutions for the DISA GSM-O II program located in Pearl Harbor, HI. A successful candidate will bring experience in cyber analysis/incident response, data onboarding, content development, configuration, troubleshooting, reporting, and visualizations. This role requires technical expertise in Elastic Stack and a thorough understanding of SIEM architecture, including hands-on experience with data ingestion, tuning, and monitoring in secure environments.

Job Tags

Full time, Work experience placement,

Similar Jobs