Senior Security Integration Engineer (Elastic Stack) IRES - SSFB/HSV jobs in United States
cer-icon
Apply on Employer Site
company-logo

Amentum · 18 hours ago

Senior Security Integration Engineer (Elastic Stack) IRES - SSFB/HSV

positionFort Carson, CO
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$130K/yr - $150K/yr
date10+ years exp

Amentum is seeking a Senior Security Integration Engineer (Elastic Stack) to support the Missile Defense Agency on the Integrated Research and Development for Enterprise Solutions contract. The role involves leading technical discussions, integrating security data sources into the Elastic Security Platform, and ensuring successful end-to-end SIEM integration.

Mechanical EngineeringSecurityTechnical Support
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Serve as a customer-facing technical lead responsible for onboarding, integrating, and optimizing security data sources into the Elastic Security Platform
Collaborate with customer technical teams to map their environment, plan ingestion strategies, update network and data flow diagrams, validate logging pipelines, and ensure successful end-to-end SIEM integration
Lead customer-facing technical discussions related to onboarding systems and data sources into Elastic SIEM
Conduct assessments of customer environments and identify required logging, telemetry, and network visibility gaps
Translate customer operational requirements into ingestion roadmaps and technical implementation plans
Develop, maintain, and version-control network diagrams, data flow diagrams, and SIEM onboarding documentation
Produce runbooks, integration guides, and operational reference materials
Monitor ingestion health and coordinate issue resolution with customers and internal teams
Ensure adherence to security policies, logging standards, and architectural governance
Provide technical guidance and mentorship to junior engineers working on data ingestion and SIEM onboarding tasks
Contribute to onboarding playbooks, best practices, and internal training sessions
Serve as a subject-matter expert on Elastic SIEM capabilities and logging integration patterns

Qualification

Elastic Stack designCybersecurity engineeringSystems integrationSIEM operationsNetwork architectureData ingestionLinux systemsElastic certificationsTechnical documentationTroubleshooting skillsCustomer engagementScripting languagesMITRE ATT&CK knowledgeMentoring skills

Required

Must have 10, or more, years of general (full-time) work experience
Must have 5, or more, years of experience in cybersecurity engineering, systems integration, or SIEM operations
Must have 2, or more, years of experience working in a management or leadership role, mentoring and guiding other team members
Must have a strong understanding of enterprise networks, including routing, switching, VPNs, firewalls, and network security tools
Must have experience with data ingestion, processing, and enrichment techniques
Must be able to build and maintain network and data flow diagrams (e.g., Visio, Lucidchart, Draw.io)
Must be proficient in Linux systems, command-line tools, and system administration fundamentals
Must have experience working directly with customers in a technical consulting or engineering capacity
Must have a DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP)
Must have an active DoD Secret Security Clearance
Must be able to obtain an active DoD Top Secret Security Clearance

Preferred

Be an Elastic Certified Engineer, Elastic Certified Analyst, or have relevant Elastic certifications
Have experience with cloud platforms and logging pipelines (AWS, Azure, GCP, cloud-native telemetry)
Be familiar with ECS (Elastic Common Schema) and data normalization best practices
Have experience implementing detection engineering or threat hunting workflows in Elastic Security
Have knowledge of scripting languages (Python, PowerShell, Bash) to automate ingestion and data validation
Have experience integrating EDR, NDR, IAM, and vulnerability management logs into a SIEM
Have an understanding of MITRE ATT&CK, cyber kill chain, and threat intelligence ingestion
Have experience mentoring or leading small technical teams

Benefits

Health, dental, and vision insurance
Paid time off and holidays
Retirement benefits (including 401(k) matching)
Educational reimbursement
Parental leave
Employee stock purchase plan
Tax-saving options
Disability and life insurance
Pet insurance

Company

Amentum

twittertwittertwitter
Glassdoor3.5
company-logo
Amentum is a technology and engineering company for security, defense, and energy.
dateFounded in 2020
location
Germantown, Maryland, USA
people-size10001+ employees
web-link
https://www.amentum.com/

Funding

Current Stage
Public Company
Total Funding
$321.16M
2025-03-12Post Ipo Secondary· $321.16M
2024-09-27IPO
2020-01-01Private Equity

Leadership Team

leader-logo
Ajay Nagar
Vice President
linkedin
leader-logo
Darren Burton
Chief People Officer
linkedin

Recent News

Business Wire
Amentum Delivers Advanced Engineering for Key Artemis II Launch Rehearsal
2025-12-29
Washington Technology
Intel's government hires and more leadership moves across the market
2025-12-20
thefly.com
Amentum wins $120M Defense Information Systems Agency computer processing award
2025-12-09
Company data provided by crunchbase