ClearanceJobs
Principal Cybersecurity Engineer - Cyber Defense (US Federal)
ClearanceJobs, Falls Church, Virginia, United States, 22042
Principal Cybersecurity Engineer
At Workday, we value our candidates' privacy and data security. Workday will never ask candidates to apply to jobs through websites that are not Workday Careers. Please be aware of sites that may ask for you to input your data in connection with a job posting that appears to be from Workday but is not. In addition, Workday will never ask candidates to pay a recruiting fee, or pay for consulting or coaching services, in order to apply for a job at Workday. About the Team At Workday, we help the world's largest organizations adapt to what's next by bringing finance, HR, and planning into a single enterprise cloud. We work hard, and we're serious about what we do. But we like to have fun, too. We put people first, celebrate diversity, drive innovation, and do good in the communities where we live and work. Workday's Cyber Defense team helps protect an ever-growing technology, global footprint. We are responsible for monitoring, detecting, and responding to threats to the company and keeping the trust of our customers. Functions like Security Response, Threat Intelligence, Detection Engineering, Secure Code Development and many others make up the fabric of who we are and what we do daily around the world. The National Security Group leads all cyber defense, personnel security, and security compliance functions for Defense and Intelligence Community Workday customer environments. About the Role This role will support one or more direct or indirect contracts with the U.S. Federal Government which, due to federal government security requirements, mandates that all Workday personnel working on the contracts be United States citizens (naturalized or native). Workday is expanding into the US Government air-gapped classified cloud environment. We are looking for a Principal Cybersecurity Engineer to help build out the team, technology, and processes to support cybersecurity in this new environment. You will be our Cyber Defense presence in the air-gapped network and will be part of a team responsible for all cybersecurity functions such as vulnerability management, incident response, threat hunting, and threat detection. You will work closely with the customers and with our Cyber Defense teams to ensure consistency across environments and develop best practices in this exciting environment. About You Basic Qualifications This position requires a TS/SCI with CI polygraph security clearance. Applicants must already possess a valid and active TS/SCI with CI polygraph security clearance. 10+ years of experience in Software Development or Devops within Cyber Security or Software Engineering or Public Cloud Platform Engineering. 2+ years of hands-on technical leadership experience. Experience deploying, monitoring, and managing systems in the AWS or Microsoft Top Secret clouds. BS or MS degree in Computer Science, Engineering, or equivalent job experience. Other Qualifications Strong understanding of platform, application, and cloud security fundamentals. Familiarity with containerized applications and their security considerations Demonstrated knowledge of adversary TTPs (Tactics, Techniques and Procedures). Deep understanding of network and application security threats, attack techniques, and mitigation options. Experience managing vulnerability scans and effectively prioritizing actions for system owners. Experience building and maintaining investigation and/or response tools. Experience with SIEM and SOAR security technologies and solutions. Experience with hunting techniques. Able to work independently and coordinate activities across multiple teams. Ability to drive multiple projects and priorities while managing operational responsibilities. Excellent written and verbal communication skills, building positive relationships with partner organizations. Our Approach to Flexible Work With Flex Work, we're combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter. Pursuant to applicable Fair Chance law, Workday will consider for employment qualified applicants with arrest and conviction records. Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans.
At Workday, we value our candidates' privacy and data security. Workday will never ask candidates to apply to jobs through websites that are not Workday Careers. Please be aware of sites that may ask for you to input your data in connection with a job posting that appears to be from Workday but is not. In addition, Workday will never ask candidates to pay a recruiting fee, or pay for consulting or coaching services, in order to apply for a job at Workday. About the Team At Workday, we help the world's largest organizations adapt to what's next by bringing finance, HR, and planning into a single enterprise cloud. We work hard, and we're serious about what we do. But we like to have fun, too. We put people first, celebrate diversity, drive innovation, and do good in the communities where we live and work. Workday's Cyber Defense team helps protect an ever-growing technology, global footprint. We are responsible for monitoring, detecting, and responding to threats to the company and keeping the trust of our customers. Functions like Security Response, Threat Intelligence, Detection Engineering, Secure Code Development and many others make up the fabric of who we are and what we do daily around the world. The National Security Group leads all cyber defense, personnel security, and security compliance functions for Defense and Intelligence Community Workday customer environments. About the Role This role will support one or more direct or indirect contracts with the U.S. Federal Government which, due to federal government security requirements, mandates that all Workday personnel working on the contracts be United States citizens (naturalized or native). Workday is expanding into the US Government air-gapped classified cloud environment. We are looking for a Principal Cybersecurity Engineer to help build out the team, technology, and processes to support cybersecurity in this new environment. You will be our Cyber Defense presence in the air-gapped network and will be part of a team responsible for all cybersecurity functions such as vulnerability management, incident response, threat hunting, and threat detection. You will work closely with the customers and with our Cyber Defense teams to ensure consistency across environments and develop best practices in this exciting environment. About You Basic Qualifications This position requires a TS/SCI with CI polygraph security clearance. Applicants must already possess a valid and active TS/SCI with CI polygraph security clearance. 10+ years of experience in Software Development or Devops within Cyber Security or Software Engineering or Public Cloud Platform Engineering. 2+ years of hands-on technical leadership experience. Experience deploying, monitoring, and managing systems in the AWS or Microsoft Top Secret clouds. BS or MS degree in Computer Science, Engineering, or equivalent job experience. Other Qualifications Strong understanding of platform, application, and cloud security fundamentals. Familiarity with containerized applications and their security considerations Demonstrated knowledge of adversary TTPs (Tactics, Techniques and Procedures). Deep understanding of network and application security threats, attack techniques, and mitigation options. Experience managing vulnerability scans and effectively prioritizing actions for system owners. Experience building and maintaining investigation and/or response tools. Experience with SIEM and SOAR security technologies and solutions. Experience with hunting techniques. Able to work independently and coordinate activities across multiple teams. Ability to drive multiple projects and priorities while managing operational responsibilities. Excellent written and verbal communication skills, building positive relationships with partner organizations. Our Approach to Flexible Work With Flex Work, we're combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter. Pursuant to applicable Fair Chance law, Workday will consider for employment qualified applicants with arrest and conviction records. Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans.