Adapt Forward
Security Engineer Location: North Charleston, SC Clearance Requirement: Minimum of a Secret Clearance Required with ability to obtain Top Secret Position Overview The Security Engineer will be responsible for managing and maintaining the CSSP's Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) systems, ensuring their optimal performance and security. Responsibilities: Design, implement, and maintain the SIEM and SOAR infrastructure (Elastic and Splunk). Manage and maintain an enterprise Elastic cluster to support SIEM operations. Monitor and analyze security events and incidents to protect information assets. Develop and maintain use cases, rules, and alerts for threat detection and response. Integrate SIEM and SOAR systems with other security tools and data sources. Automate security operations workflows and incident response procedures using SOAR platforms. Perform system monitoring, health checks, and regular updates to ensure system integrity and availability. Conduct performance tuning, capacity planning, and scalability assessments. Implement and manage data ingestion pipelines for security event data. Create and maintain documentation for configurations, processes, and SOPs. Collaborate with security analysts and other CSSP teams to optimize SIEM and SOAR capabilities. Required Skills and Qualifications: At least 3 years of experience managing an enterprise Elastic cluster. Proficiency in managing SIEM and SOAR solutions. Experience with Elasticsearch Enterprise (Logstash, Kibana). Strong understanding of security event and incident management processes. Knowledge of scripting languages (Python, PowerShell) for automation. Experience with threat detection and response methodologies. Extensive Linux Administration experience with RHEL. Strong networking knowledge and experience. Minimum Requirements: US Citizen High school diploma or GED Availability for on-call support and up to 25% travel, including OCONUS travel. Preferred Qualifications: Experience with other SIEM platforms (e.g., Splunk). Knowledge of security frameworks (MITRE ATT&CK, NIST). Familiarity with network and endpoint security technologies. Experience with incident response and digital forensics. Certifications: 8570 IAT Level II Certification CISSP, GCIH, or Elastic Certified Engineer Company Overview Adapt Forward provides cybersecurity solutions for critical information systems, leveraging advanced threat assessment technology and high-level security infrastructure development to protect sensitive data against evolving threats. Benefits: Comprehensive health, dental, vision, and flexible spending accounts. 401k with immediate vesting and matching contributions. Annual training budget for conferences, certifications, and travel. Federal holidays plus three weeks of PTO. Employee Assistance Program and well-being services. We are an equal opportunity employer, committed to diversity and inclusion. #J-18808-Ljbffr