Cloud Security Engineer

About The Position

Requirements

• 5+ years of professional threat hunting experience in enterprise environments
• Splunk Certification (e.g., Splunk Core Certified Power User, Splunk Enterprise Security Certified Admin)
• Strong scripting skills, especially in Splunk SPL query language
• Hands-on experience with AWS and Azure cloud platforms
• Proficiency in Python or PowerShell
• Familiarity with MITRE ATT&CK, cyber kill chain, and PEAK Threat Hunting Framework
• Experience with SIEM, EDR, and network security monitoring tools
• Must be eligible to work in the United States
• Ability to work onsite in RTP, NC or Fulton, MD on Tuesdays and Thursdays

Responsibilities

• Proactively hunt for cyber threats across on-premises and cloud environments (AWS and Azure)
• Utilize Splunk for advanced log analysis, threat detection, and incident response
• Analyze indicators of compromise (IOCs) and adversary tactics, techniques, and procedures (TTPs)
• Document threat findings in ticketing systems and oversee remediation efforts to closure
• Develop and implement threat hunting methodologies and playbooks
• Collaborate closely with SOC, Incident Response, and IT teams
• Provide actionable recommendations to improve threat detection and response
• Produce detailed reports on findings, actions taken, and remediation status

Benefits

• Full comprehensive benefits package including medical, dental, vision, 401(k), PTO, and sick leave as required by law