• Secret Senior Elastic Engineer

    Insight Global (Colorado Springs, CO)


    Job Description

    A company in Colorado Springs, CO is looking for a Senior Elastic Engineer to join their team! This Sr. Elastic Engineer will be responsible for the design, implementation, and maintenance of the Elastic Stack environment, with a primary

     

    focus on leveraging Elastic EDR and Defend capabilities to enhance the cybersecurity posture. This position will be responsible for ensuring the security, scalability, and performance of the Elastic Stack infrastructure, and will work

     

    closely with other teams to integrate it with existing security tools and workflows.

    Responsibilities:

    Architect, deploy, and maintain a highly available and scalable Elastic Stack environment, specializing in Elastic EDR/ Defend.

    Configure and optimize Elastic EDR/Defend policies and data pipelines for threat detection, prevention, and security event enrichment.

    Develop and maintain Kibana dashboards and visualizations for real-time security monitoring, threat identification, and incident response tracking.

    Perform proactive threat hunting and in-depth security analysis using Elastic EDR/Defend capabilities.

    Troubleshoot complex Elastic Stack issues, develop comprehensive documentation, and mentor junior engineers to ensure operational excellence.

     

    This position is onsite full-time in Colorado Springs, CO or Huntsville, AL the pay range for this role is between $60-65/hr depending on years and level of experience, education, and certifications. This role requires an Active Secret Clearance or higher. Typical benefits offered include flexible work schedules, educational reimbursement, retirement benefits (401K match), employee stock purchase plan, health benefits, tax saving options, disability benefits, life and accident insurance, voluntary benefits, paid time off and paid holidays, and parental leave.

     

    We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

     

    Skills and Requirements

     

    10+ years of general (full-time) work experience

     

    - May be reduced with completion of advanced education

     

    5+ years of experience working with the Elastic Stack (Elasticsearch, Logstash, Kibana).

     

    3+ years of experience implementing and managing Elastic EDR and Defend solutions.

     

    2+ years of experience in a lead or senior role, mentoring and guiding other team members.

     

    1 year of experience working in a management or leadership role

     

    Hold a strong understanding of security principles, threat detection, and incident response.

     

    Experience with data ingestion, processing, and enrichment techniques.

     

    Proficient in at least one scripting language (e.g., Python, Bash, PowerShell).

     

    Current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP) ·

     

    Active DoD Secret Security Clearance

     

    Must be able to obtain an active DoD Top Secret Security Clearance Linux and Windows Server administration experience

     

    Experience with containerization technologies (Docker, Kubernetes)

     

    Utilized automation tools (Ansible, Puppet, Chef).

     

    Cloud platforms experience (AWS, Azure, GCP)

     

    Experience with SIEM technologies and security event management.

     

    Worked with security frameworks and compliance standards (e.g., NIST, FedRAMP)

     

    Strong understanding of network protocols and security concepts

    Threat intelligence platforms and data feeds experience

    Security certifications (e.g., CISSP, CISM, CEH)

     

    Experience tuning and optimizing Elastic EDR and Defend for specific threat landscapes