Cloud Security and Detection Engineering SME

Edgewater Federal Solutions is looking for a Senior Cloud Detection Engineer to help develop content and implement a detection strategy within the cloud environment for a large government enterprise. This role will help create a robust proactive approach for detecting a wide variety of threats utilizing a range of cyber security tools and data sources.

**Due to the nature of the contract and work, US Citizenship is required**

Write detections in a variety of languages that address a variety of use cases
• Identify detection gaps, make recommendations for addressing those gaps and track projects to completion
  Evaluate data sources and data quality and make recommendations for improvements
• Drive the maturity of the detection engineering capability forward
• Contribute to the integration of detection engineering with other cybersecurity capabilities, such as SOC, IR, CTI, Threat Hunt and Red Teams
• Acts as a Subject Matter Expert in Cloud Cybersecurity. Provide Analyst training and workshops and make recommendations following best practices for cloud cybersecurity.

• BS degree from an accredited university in Computer Science, Engineering, or a related field
• 5+ years experience in cyber security.
• 4+ years in a detection engineering role
• U.S. Citizenship is required
• Cloud Experience
  • Microsoft Azure expert with previous hands-on experience
  • Experience in AWS and GCP
  • Expert in KQL
  • Strong understanding of data normalization concepts and how to implement them
• Detection Engineering Experience
  • Understanding of a variety of detection strategies and how to implement them in a large enterprise organization
  • Understanding of Mitre ATT&CK and how to map detection coverage
  • Experience working in a Detection as Code environment
  • Thorough understanding of modern cybersecurity threats against large enterprise organizations including cloud, identity, endpoint and network

Desired:

• Relevant Microsoft certifications
• Experience writing detections in cloud environments
• Familiarity with a variety of EDR, SIEM, Cloud and Network based cybersecurity tools
• Previous experience working in a 24x7 SOC environment
• Previous experience in Incident Response roles
• Network signature creation
• Tool integration and event correlation with differing API's

Additional Benefits:

• Paid Time Off & Holiday Pay
• Medical Insurance
• Dental Insurance
• Vision Insurance
• Disability, Life Insurance, and AD&D
• Flexible Spending Accounts
• Pre-Tax 401K and/or After-Tax Roth IRA (with employer matching contribution)
• Tuition and Technical Training Reimbursement
• Exercise Reimbursement
• Computer Reimbursement
• Employee Assistance Program

About Us:

Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2024.

It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other statuses protected by applicable law. #LI-KC1