Elastic Engineer (Senior-Level) - (ISEE010926.1)

About The Position

Requirements

• Due to facility security requirements, only U.S. citizens are eligible for consideration at this time.
• Ability to complete a pre-employment background check and drug screening, which will include, but is not limited to, testing for marijuana use.
• This position requires access to federal facilities. Candidates must possess a valid, unexpired Real ID-compliant driver's license or state-issued identification card at the time of hire. If you are unsure whether your ID is Real ID-compliant, please check for the star symbol in the upper portion of your driver's license or state ID.
• Active Secret Clearance.
• Ability to obtain a Top Secret Clearance.
• 10 or more years of general, full-time work experience.
• 5 or more years of experience working with the Elastic Stack (Elasticsearch, Logstash, Kibana).
• 3 or more years of experience specifically implementing and managing Elastic EDR and Defend solutions.
• 2 or more years of experience in a lead or senior role, mentoring and guiding other team members.
• 1 or more years of experience working in a management or leadership role.
• Strong understanding of security principles, threat detection, and incident response.
• Experience with data ingestion, processing, and enrichment techniques.
• Proficient in at least one scripting language (e.g., Python, Bash, PowerShell).
• Current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP).

Nice To Haves

• Experience with Linux and Windows Server administration.
• Experience with containerization technologies (Docker, Kubernetes).
• Experience with automation tools (Ansible, Puppet, Chef).
• Experience with cloud platforms (AWS, Azure, GCP).
• Experience with SIEM technologies and security event management.
• Experience with security frameworks and compliance standards (e.g., NIST, FedRAMP).
• Strong understanding of network protocols and security concepts.
• Experience with threat intelligence platforms and data feeds.
• 1 or more relevant security certifications (e.g., CISSP, CISM, CEH).
• Experience tuning and optimizing Elastic EDR and Defend for specific threat landscapes.

Responsibilities

• Design, implement, and maintain a secure, scalable, and high-performing Elastic Stack environment focused on Elastic EDR and Defend capabilities.
• Architect, deploy, and manage Elastic Stack infrastructure to support threat detection, prevention, and event enrichment.
• Configure, tune, and optimize Elastic EDR/Defend policies and data pipelines to improve cybersecurity effectiveness.
• Develop and maintain Kibana dashboards and visualizations for real-time monitoring, threat detection, and incident response.
• Perform proactive threat hunting and detailed security analysis using Elastic EDR/Defend tools.
• Troubleshoot complex Elastic Stack issues and implement solutions to maintain system reliability and performance.
• Create and maintain technical documentation for configurations, procedures, and best practices.
• Mentor and guide junior engineers to promote operational excellence and knowledge sharing.

Benefits

• health, dental, and vision insurance
• 401(k) contributions
• educational reimbursement