×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Threat Detection Expert

Job in Ashburn, Loudoun County, Virginia, 20147, USA
Listing for: Artech LLC
Full Time position
Listed on 2026-03-04
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 220000 - 250000 USD Yearly USD 220000.00 250000.00 YEAR
Job Description & How to Apply Below
Job Title :
Threat Detection Expert
Location:
Mclean, VA
Duration:
Full Time Direct Hire Employment
Security Clearance :
Active Top Secret/SCI Clearance with Full Scope Polygraph
Salary Range : $220,000 - $250,000 Per Annum


Responsibilities:

In this role, you will be working with a commercial company’s security team to create and build new solutions to challenging problems. In performing this role, you will be required to:
  • Work with the customer to establish a mature Insider threat monitoring capability across multiple windows, Linux, and container environments.
  • This person will be leading the development of new alerting frameworks
  • Execute a dual mandate over a designated time period to:
  • Develop detection logic in the customer SIEM solution.
  • Architecting and deploying detections from the ground up
  • Support the migration of logic, queries, and visualizations into a new SIEM solution.
  • Work with the customer to improve incident response efficiencies.
  • Support the Tier 1 Security Operations Team with investigations and responses.
  • Improve the customer’s ability for early detection and mitigation of risks

Must Have Qualifications:
  • This position requires an active TS/SCI clearance with Full Scope polygraph.
  • Specialist with architecting and deploying new frameworks from the ground up.
  • Bachelor’s degree in computer science, Engineering, Information Assurance, or a related discipline and 10+ years of related experience. Additional experience may be substituted for a degree.
  • Must have experience and expertise with SIEM solutions such as Splunk, Kabana, etc.
  • Must have experience with log telemetry structure and log logic in Windows, Linux, and Containerized environments.
  • Experience with migrating schema mappings from one SIEM solution to another.
  • The ability to demonstrate query language proficiencies.
  • Must have experience with cloud service providers i.e., Google, AWS, Azure, etc.
  • Have experience with the deployment and configuration of data collections from various system components that include operating systems, networking devices, and containerization platforms.
  • Experience creating dashboards, analytics, and alerts within SIEM tools.
  • Experience working with monitoring systems supporting auditing, incident response, and system health.
  • Experience with the OSINT framework and related tools.
  • Working in an air gapped environment
  • Analyze user behavior and how to create alerts from scratch
  • Comfortable with both Splunk and ELK
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search