Nastech Global
Sr. SIEM Engineer (Elastic+Confluence)
Nastech Global, Fort Belvoir, Virginia, United States, 22060
Job Title
Sr. SIEM Engineer (ElasticConfluence)
Location
5 days onsite in Ft. Belvoir VA
Duration
Long-term Contract
Citizenship
US Citizen (able to obtain Secret Clearance)
Requirements
Top Requirements
Elastic
Confluence
Security or any IAT Level II Cert
SIEM experience
Required Skills A Secret clearance will be required to maintain this position
Compliance with DoD 8140 / 8570 IAT Level II certification prior to start date
At least 5 years of hands‑on experience in deployment, configuration and solution development using the Elastic Stack for security and logging use‑cases. Specific experience with Elastic SIEM is a plus
Demonstrated experience with the full Elastic Stack - Elasticsearch Logstash Kibana Beats Machine Learning and REST API integration
Experience integrating Elasticsearch with external systems (e.g. SOAR tools, Threat Intel Platforms)
Experience with data management: hot / warm / cold architectures, shard allocation / re-allocation, snapshots & restoration
Strong experience with evaluating existing Elastic clusters configuration parameters, indexing, search and query performance tuning, security and cluster administration
Employment Type
Full Time
Vacancy
1
#J-18808-Ljbffr
Sr. SIEM Engineer (ElasticConfluence)
Location
5 days onsite in Ft. Belvoir VA
Duration
Long-term Contract
Citizenship
US Citizen (able to obtain Secret Clearance)
Requirements
Top Requirements
Elastic
Confluence
Security or any IAT Level II Cert
SIEM experience
Required Skills A Secret clearance will be required to maintain this position
Compliance with DoD 8140 / 8570 IAT Level II certification prior to start date
At least 5 years of hands‑on experience in deployment, configuration and solution development using the Elastic Stack for security and logging use‑cases. Specific experience with Elastic SIEM is a plus
Demonstrated experience with the full Elastic Stack - Elasticsearch Logstash Kibana Beats Machine Learning and REST API integration
Experience integrating Elasticsearch with external systems (e.g. SOAR tools, Threat Intel Platforms)
Experience with data management: hot / warm / cold architectures, shard allocation / re-allocation, snapshots & restoration
Strong experience with evaluating existing Elastic clusters configuration parameters, indexing, search and query performance tuning, security and cluster administration
Employment Type
Full Time
Vacancy
1
#J-18808-Ljbffr