Detection Engineer Elastic SMEAdapt Forward • North Charleston, South Carolina, USA
Detection Engineer Elastic SME
Adapt Forward • North Charleston, South Carolina, USA
[job_card.variable_days_ago]
[job_preview.job_type]
- [job_card.full_time]
[job_card.job_description]Bachelors Degree in relevant discipline and 5 years or at least 8 years of experience working in a CSSP SOC or similar environment 2 years of experience with signature development detection logic creation and optimization on multiple platforms Must be a U.S. Citizen Experience in threat detection engineering threat hunting or a related role with hands-on experience using the Elastic Stack Kibana Query Language (KQL) Event Query Language (EQL) Elasticsearch Query Language (ESQL) and / or Elastic Defend. Experience with threat intelligence platforms and indicator management Proficient knowledge of detection creation and implementation processes Expertise in IDS / IPS solutions including signature development and optimization Strong understanding of the indicator lifecycle including initial discovery development operational maturity and long-term sustainment Effective verbal and written communication skills Ability to solve complex problems independently Preferred certifications : Elastic Certified Analyst; Elastic Certified SIEM Analyst Elastic Certified Engineer. Must have requisite certifications to fulfill DoD 8570 IAT Level II and CSSP-specific requirements Comprehensive Physical Wellness Package including Medical Dental Vision Care plus Flexible Spending Accounts for health- and dependent-care are included in our standard benefits plan. 401k Retirement Plan with Matching Contribution is immediately available and vested. Annual Training Budget to be used for conference attendance school enrollment certification programs and associated travel expenses. Eleven Federal Holidays plus three weeks of PTO / vacation / sick leave that accrues at a rate of ten hours per month. Employee Assistance Program : Counseling / legal assistance and other employee well-being programs are also offered.
Cyber Security Analyst III Detection Engineer Elastic SME
Charleston SC
Secret Clearance with ability to obtain TS / SCI
As a Detection Engineer you will be responsible for designing developing and implementing detection mechanisms to identify cyber threats within a Cybersecurity Service Provider (CSSP) environment. You will create and manage IDS / IPS signatures log correlation rules and other detection tools based on indicator lifecycle analysis. You will collaborate with Defensive Cyber Operations (DCO) Watch Analysts and other teams to ensure timely and effective threat detection adhering to CJCSM 6510.01B reporting requirements and supporting the CSSPs mission to protect data across a wide spectrum of sources and locations.
Position Requirements and Duties
- Develop implement and maintain custom high-fidelity detection rules and logic in the Elastic Security platform specifically targeting adversary TTPs mapped to the MITRE ATT&CK framework.
- Develop and prioritize risk-based alerting mechanisms to focus detection efforts on high-impact threats aligning with organizational risk assessments
- Analyze threat intelligence to create and refine detection mechanisms tailored to the customers environment
- Validate and test detection rules to ensure accuracy minimize false positive and benign positive matches and enhance threat identification capabilities
- Collaborate with DCO Watch Analysts to integrate detection mechanisms into monitoring and incident response workflows
- Maintain and update detection tools and signatures in response to evolving threats ensuring compliance with CJCSM 6510.01B and other applicable directives
- Compile and maintain internal standard operating procedure (SOP) documentation for detection creation and implementation processes
- Coordinate with reporting agencies and subscriber sites to align detection strategies with operational needs and threat intelligence
- Participate in program reviews product evaluations and onsite certification evaluations to assess detection tool efficacy
- Overtime may be required to support detection implementation or incident response actions (Surge)
- Up to 10% travel may be required
Minimum Qualifications
Desired Qualifications
Required Certifications
Company Overview
Adapt Forward is a cybersecurity solutions provider for some of the nations most valuable information systems. Leveraging advanced threat assessment technology and experience in building high-level information security infrastructure we develop adaptive solutions uniquely tailored to our customers business objectives to protect sensitive data against sophisticated threats in an increasingly complex security environment.
Summary of Benefits
Equal opportunity employer as to all protected groups including protected veterans and individuals with disabilities.
Adapt Forwards Veteran / Disability Affirmative Action Plan narrative section is available for inspection upon request during normal business hours at the Human Resources office and may be requested by contacting Human Resources at
Required Experience :
Senior IC
Key Skills
ASP.NET,Health Education,Fashion Designing,Fiber,Investigation
Employment Type : Full-Time
Experience : years
Vacancy : 1
[job_alerts.create_a_job]
Engineer Elastic • North Charleston, South Carolina, USA
[internal_linking.related_jobs]
Military and other Government entities is seeking a fast-learning and self-motivated.Automation and Infrastructure as Code (IaC) support services for the Department of Defense (DoD) and the Naval I...[show_more]
As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...[show_more]
A client of Innova Solutions is immediately hiring for an.Position Type : Full Time (Contract).Designs, analyses and modifies aerospace manufacturing equipment and tooling that meet stakeholder requ...[show_more]
If you picture yourself doing great things that make a difference in the lives of others, Turner is the place to be.Turner Construction is an industry leading commercial construction general contra...[show_more]
Top Skillsets Must have TS / SCI Must have technical BA / BS degree Must be able to travel on 2-3 week long trips to Europe, Asia, or in the US.
Familiar with setting up networks in the field Integratio...[show_more]
Here at Spirax Sarco we offer the industry's most extensive range of products with services, coupled with practical industry application expertise.
In short, we build solutions that set the benchmar...[show_more] Cyber Security Analyst III DCO Watch Analyst Tier 3 Malware.Secret Clearance with ability to obtain TS / SCI.As a Tier 3 Defensive Cyber Operations (DCO) Watch Analyst you will be responsible for lea...[show_more] 
Equipment & Tool Engineer- Emergent Operations (Associate Mid-Level or Senior ).Boeing Commercial Airplanes is seeking.Equipment & Tool Engineers.
The selected candidate will join our Emerge...[show_more]
The Manger for Total Vulnerability Management (TVM) serves as the enterprise lead for identifying assessing prioritizing and remediating security vulnerabilities across all data center and cloud ho...[show_more]
Are you searching for an opportunity to take your career to the next level? Ignite Digital Services is a fast-growing digital transformation company serving the national security sector.Our small b...[show_more]
Applying critical thinking skills via distance support troubleshooting / help desk support in order to rapidly assist U.Navy personnel in the operations, troubleshooting, and repair of U.Assisting th...[show_more]
SHL Medical is a world-leading provider in the design development and manufacturing of advanced self-injection devices.With a global team of 6000 employees we partner with leading pharmaceutical an...[show_more]
Looking for an opportunity to make an impact? .Unleash your potential at Leidos, where we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated ...[show_more]
We are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support.
We pride ourselves on being forward-leaning thinkers and fo...[show_more]
This job is with JLL, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community.
Please do not contact the recruiter directly.JLL empowers you to ...[show_more]
Who is GeoStabilization International.GeoStabilization International (GSI) develops and installs innovative solutions that protect people and infrastructure from the dangers of geohazards.We specia...[show_more]
Real-time data is revolutionizing our lives.Think of the Conduktor platform as the ultimate command center for all things Kafka : whether managing clusters, monitoring data streams, or debugging iss...[show_more]
Perform visual, magnetic particle and dye penetrant examinations in accordance with written procedures.Testing and inspection of products will be performed at various stages of the production proce...[show_more]
DevOps Engineer
Atlas Technologies • North Charleston, South Carolina, USA
[job_card.full_time] +1
[last_updated.last_updated_30] • [promoted]
Lead Security Engineer - Cyber Security
Relativity • Charleston, SC, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
6H6PI4-Equipment & Tool Engineer 4-68D-Asset Integration & Sys. Eng.
Innova Solutions • North Charleston,South Carolina,United States
[job_card.full_time] +1
[filters_job_card.quick_apply]
[last_updated.last_updated_30]
Scheduling Engineer
Turner Construction • Charleston, SC, United States
[job_card.permanent]
[last_updated.last_updated_variable_days] • [promoted]
Integration Engineer / Edge Node
Super Systems Inc. • Charleston, South Carolina, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Sales Engineer - NYC
Spirax Group • Charleston, SC, US
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
DCO Watch Analyst Tier 3 CHS Malware
Adapt Forward • North Charleston, South Carolina, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Equipment & Tool Engineer- Emergent Operations (Associate, Mid-Level, or Senior )
Boeing • North Charleston, South Carolina, USA
[job_card.full_time] +2
[last_updated.last_updated_variable_days] • [promoted]
Manager for Total Vulnerability Management (TVM)
DXC Technology • Charleston, South Carolina, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Senior AI / ML Engineer
Ignite Digital Services • Charleston, South Carolina, United States
[filters.remote]
[job_card.full_time] +1
[last_updated.last_updated_30] • [promoted]
Sr Field Service Engineer
Scientific Research Corporation • North Charleston, SC, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Quality Control Engineer
SHL Medical • Charleston, South Carolina, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Quality Management Systems (QMS) Engineer
Leidos • Ladson, SC, US
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Threat Evaluation, and Countermeasures Team (DETECT) Analyst
OneZero Solutions • Charleston, South Carolina, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Operating Engineer
JLL • Charleston, South Carolina, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Business Development Engineer
GeoStabilization International • Charleston, South Carolina, USA
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Sales Engineer
Conduktor • Charleston, SC, US
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
NDT Level II Inspector
Pegasus Steel • Ladson, SC, US
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]