Senior Detection Engineer

SkyePoint Decisions is seeking an experienced Senior Detection Engineer for our customer's Federal Strategic Cyber Group.  

• →Perform advanced custom development and implementation of cybersecurity alerts 
• →Develop, configure, and tune cyber security tools, alerts, and response capabilities 
• →Integrate security alerts and process workflows into SOAR and SIEM systems 
• →Automate and optimize security alert workflows to enhance threat response capabilities and enhance efficiency throughout the Incident Response lifecycle 
• →Analyze systems and environments to determine necessary logging and alerting to optimize cyber security monitoring in an ever-changing cyber threat landscape 
• →Provide technical expertise for Splunk, Python, JavaScript, PowerShell, and similar coding languages 
• →Support the security operations center through security development 
• →Support cross team collaboration efforts to enhance the customer’s defense against advanced cyber adversaries 
• →Implement cyber monitoring, analysis, and response capabilities within our SIEM, SOAR, and detection tools.  
• →Develop and enhance threat detections and advanced analysis capabilities. 
• →Provide tuning of threat detections. 
• →On-board and integrate cyber monitoring tools from the analyst’s perspective. 
• →Coordinate with engineers to assist in building and maintaining platforms. 
• →Coordinate with cyber threat experts to implement the latest signatures. 
• →Create and maintain various security dashboards, alerts, and reports. 
• →Write Zeek (Bro), Suricata and Snort signatures.  
• →Maintain Python and JavaScript based detections and automation capabilities within our tools.  

• Bachelor’s degree and minimum of 9 years of relevant experience; 7 years with Masters degree; 4 years with PhD. An additional 4 years of relevant experience will be substituted in lieu of the degree requirement. 
• To be considered for this position, candidate must either currently hold one of the professional certifications listed below or obtain one prior to their start date. Continued certification is required as a condition of employment:
  • CASP+ CE, CCNA Cyber Ops, CCNA-Security, CCNP Security, CEH, CFR, CISA, CISSP (or Associate), Cloud+, CySA+, GCED, GCIA, GCIH, GICSP, SCYBER, VCA DCV, PPDA, Agile IC, SNOW App Dev  
• U.S. citizenship required.
• Active Secret security clearance. 
  • Ability to obtain final Top Secret clearance.

• A solid understanding of the MITRE ATT&CK Framework 
• A solid understanding of Splunk Enterprise Security 
• A solid understanding of Cybersecurity Incident Response 
• A solid understanding of Cloud Development with Microsoft Azure/MDE.  
• A solid understanding of Machine Learning and User and Entity Behavior Analytics.  

• At SkyePoint, we go B.I.G. (beginning in GRATITUDE) by recognizing all we have and giving back to our employees, families, and communities. It instills a positive mindset that permeates all we do. By beginning in gratitude, SkyePoint can continue to spread living in gratitude each day.
• Great Benefits: Several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, ST/LT Disability, Life Insurance, floating federal holiday options, and 401k matched
• Certificate Incentive Program: To promote professional development, we recognize and reward employees who obtain new certifications aligned with business needs.
• Flexible Work Environment

SkyePoint Decisions is an established ISO 9001:2015 and ISO/IEC 27001:2013 certified small business and appraised at CMMI Level 3 for Services and Development. We possess a common vision of excellence and foster a collaborative team culture built upon individual performance and accountability. We invest in our people and systems to create value for our clients. It is the SkyePoint Way. We are grateful for the opportunity to work with exceptional people and give back to the communities we serve. Our employees value the flexibility at SkyePoint that allows them to balance quality work and their personal lives.

SkyePoint Decisions is a participating E-Verify Employer. 

U.S. Citizenship is required for most positions.

Equal Opportunity Employer/Veterans/Disabled.

CCPA Disclosure Notice Here