Job Description
Required Qualifications
- Top Secret clearance with SCI eligibility required
- Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field.
- 4+ years of experience supporting cybersecurity platforms, cyber operations environments, or enterprise IT systems.
- Experience with network detection and response (NDR) and intrusion detection systems (IDS) such as Zeek, Suricata, or equivalent
- Experience using the Elastic Stack (Elasticsearch, Logstash, Kibana), MDE, Trellix, or Tanium to ingest, correlate, and analyze large-scale security telemetry and develop queries and dashboards to detect anomalous behavior and indicators of compromise.
- Experience performing threat hunting in AWS environments using cloud telemetry such as CloudTrail and VPC Flow Logs, with familiarity leveraging HashiCorp Boundary for secure, identity-aware access to investigative systems and cloud resources.
- Experience with Docker, Podman or Kubernetes for application deployments.
- Experience with Type 1 hypervisors, virtual machines, EC2 instances, and Linux administration
- Experience supporting security products or security operations workflows.
- Minimum 4 years’ experience in DoW incident response and threat hunting
- Familiarity with the Pyramid of Pain and the MITRE ATT&CK framework.
- DoD 8570 IAT Level II certification (e.g., Security+ or equivalent).
- AWS API integration experience
- AWS Cloud Certification
Preferred Qualifications:
- Experience conducting threat hunting within enterprise or mission-hosted network environments by analyzing network traffic, authentication activity, endpoint telemetry, and application logs to identify malicious activity, lateral movement, and persistence mechanisms.
- Experience configuring network infrastructure to enable packet capture solutions. Familiarity with the Cisco 3-Layer Hierarchical Model, Purdue Model, and other architectural frameworks (Strongly Preferred)
- GIAC Certified Forensic Analyst (GCFA)
Want to learn more about Government Services? Check us out on our platform:
https://www.wwt.com/public-sector
https://www.wwt.com/government-services
Preferred locations: San Antonio, TX (JBSA)
Certain states and localities require employers to post a reasonable estimate of salary range. A reasonable estimate of the current base pay range for this position is $125,000.00 to $160,000.00 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay.
The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:
- Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program
- Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement
- Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement
- Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program
We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All!
If you have any questions or concerns about this posting, please email [email protected].
#LI-AH1