Senior Security Tools Engineer (Top Secret)

Make a difference here.

UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams.

By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India. 

The Security Tooling Engineer will play an integral role with the AWS Cloud services leveraged to protect this Federal Agency. Evaluates the effectiveness, configuration, and integration of enterprise and AWS-native security tools. 

What You'll Do:

• Assess enterprise security tools such as:  

• SIEM platforms 

• IDS/IPS solutions 

• Vulnerability management systems 

• Evaluate AWS-native security services including:  

• AWS GuardDuty 

• AWS Macie 

• AWS Inspector 

• Conduct configuration reviews against:  

• CIS Benchmarks 

• AWS Well-Architected Framework 

• Review logging and monitoring configurations to ensure adequate coverage and visibility 

• Support or perform vulnerability assessments and penetration testing to validate tool effectiveness 

• Analyze tool integration and data flow between systems 

• Identify gaps, redundancies, and opportunities for optimization 

• Provide recommendations to improve tooling effectiveness and coverage 

What You've Done:

• 7+ years hands-on experience with security tools and AWS security services 

• Experience with AWS security services and cloud security tooling 

• Experience performing tool assessments, audits, or implementations 

Core Certifications: 

• GIAC certifications (choose based on specialty):  

• GCIA (Intrusion Analysis) 

• GCIH (Incident Handling) 

• GMON (Continuous Monitoring) 

• CompTIA Security+ (baseline, if needed) 

Tool/Platform & Cloud: 

• AWS Certified Security – Specialty 

• Splunk Certified Architect / Power User  

• Microsoft SC-200 or equivalent  

Pen Testing / Validation (Preferred): 

• OSCP (Offensive Security Certified Professional) 

• CEH (Certified Ethical Hacker) 

Clearance Requirement: Active TS/SCI with SCI Polygraph (or eligible) 

What We Offer:

• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed  
• Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)  
• Group Term Life, Short-Term Disability, Long-Term Disability  
• Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness  
• Participation in the Discretionary Time Off (DTO) Program  
• 11 Paid Holidays Annually 

UltraViolet Cyber maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect our company's differing products, services, industries and lines of business. Candidates are typically placed into the range based on the preceding factors.

We sincerely thank all applicants in advance for submitting their interest in this position. We know your time is valuable.

UltraViolet Cyber welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status. 

If you want to make an impact, UltraViolet Cyber is the place for you!