SecOps Engineer - Secret clearance - travel role
About The Position
We are seeking a Security Operations (SecOps) Engineer to support federal cybersecurity initiatives across enterprise and cloud environments. This role combines hands-on security engineering, operational monitoring, and compliance support to ensure systems remain secure, observable, and audit-ready throughout their lifecycle. The ideal candidate will have strong experience with Elastic / ELK Stack technologies, security monitoring, and federal compliance frameworks. This role partners closely with DevOps, SRE, and compliance teams to integrate detection, response, and automation into production systems.
Requirements
- Hands-on production experience with the Elastic Stack (ELK)
- Direct experience using Elastic Security as a SIEM/XDR platform
- Log pipeline design, parsing, enrichment, and lifecycle management
- Security event monitoring, alert triage, and incident response
- Linux and Windows security administration
- Scripting or automation experience (Python, Bash, or PowerShell)
- Experience in cloud or hybrid environments (AWS, Azure, GCP, or GovCloud)
- Strong familiarity with: NIST 800-53, 800-61, 800-137
- FISMA federal cybersecurity requirements
- FedRAMP control implementation and monitoring
- Experience supporting audits, assessments, or ATO packages
- Active Secret Clearance
Nice To Haves
- Experience deploying Elastic in DoD or federal environments
- Integration with cloud-native logging tools (CloudTrail, Azure Monitor, GCP Logs)
- Familiarity with DevSecOps and Site Reliability Engineering (SRE) practices
- Container and Kubernetes security experience
- Elastic Certified Engineer or Analyst
- Security+
- CySA+
- CISSP
Responsibilities
- Monitor, investigate, and respond to security alerts and incidents using Elastic Security (SIEM/XDR)
- Design, deploy, and maintain the Elastic Stack (Elasticsearch, Logstash, Beats, Kibana)
- Develop and tune detection rules, dashboards, and alerting workflows
- Conduct threat hunting and advanced log analysis
- Perform vulnerability scanning and analysis using tools such as ACAS / Tenable
- Track and remediate vulnerabilities in accordance with federal timelines
- Coordinate patching and mitigation efforts with infrastructure and application teams
- Implement and maintain controls aligned with NIST 800-53, FISMA, and FedRAMP
- Support ATO (Authority to Operate) activities including documentation and evidence collection
- Produce compliance and CDM reporting using Elastic dashboards and data feeds
- Integrate security monitoring and logging into CI/CD pipelines and Infrastructure-as-Code
- Automate ingestion, enrichment, and response workflows using Python, Bash, or PowerShell
- Enforce secure configuration baselines (STIGs, CIS benchmarks)
- Partner with DevOps and SRE teams to embed security observability into system design
- Advise stakeholders on risk posture, detections, and mitigation strategies
- Communicate technical findings to both technical and non-technical audiences
Benefits
- comprehensive PPO medical coverage with access to a Health Savings Account (HSA) option
- vision plan
- dental insurance with the base dental plan option paid for by PGTEK
- Life Insurance, Short and Long-Term disability, and Critical Illness insurance have premiums covered
- matching 401(k) plan
- discount on pet insurance through ASPCA Pet Insurance
- Employee Assistance Program
- generous amount of PTO and Holidays
- Education Assistance Program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
