SIEM / EDR / Incident Response Cybersecurity Engineer

Remote
Contracted
Experienced
 
 
                                                                               
We are a growing information technology company that offers its employees a culture of success, the chance to work on revolutionary federal IT infrastructure, and the opportunity to grow alongside cutting-edge technology that is reshaping the industry. We are seeking forward thinking candidates that have strong experience in operational support and can help take to the next level in a proactive stance.
 
Chameleon Integrated Services has expertise in operations management, quality systems, data operations and cybersecurity. We secure some of the most sensitive data for the Department of Defense and for other U.S. federal government agencies. We are known for the great care we take with clients and employees, and we believe in promoting from within.
  
We offer a Full Benefits package including:
  • Competitive Employee Health Insurance options including dental
  • 100% company paid vision plan
  • 401K plan with generous company match and no vesting period
  • 100% company paid life insurance
  • 100% company paid long and short-term disability insurance
  • Training allowance
  • PTO and more
SIEM / EDR / Incident Response Cybersecurity Engineer – This is a remote opportunity
Role:
This role covers the threat detection, incident response, continuous monitoring, alert analysis, forensic support, RCA, and security operations.  This role can also include vulnerability management if the candidate has demonstrated experience in scanning and remediation coordination.
  • SIEM use-case development
  • Alert tuning
  • EDR/XDR deployment or administration
  • Log source onboarding
  • Incident runbooks
  • Incident triage
  • Containment actions/support
  • Forensic collection support
  • RCA
  • Documented response/corrective actions
  • Log onboarding
  • Detection engineering
  • SIEM correlation
Must Have:
  • Cyber defense engineer with 6–10+ years of experience configuring, tuning, and using SIEM, EDR, XDR, cloud-native security tools, and log pipelines
  • The candidate must be able to engineer detections, validate log sources, triage alerts, support containment, document findings, and work with infrastructure teams to implement corrective action
  • Monitoring, analysis, and response to security events using SIEM and EDR/XDR
  • Incident triage, containment, investigation, remediation
  • Centralized logging, correlation, log retention compliance
  • Continuous monitoring
  • Forensic data collection and reporting
  • RCA for security incidents and control failures
  • Integration with security tools to support continuous, real-time security monitoring
Certifications:

GIAC GCIA/GCIH/GCED; CompTIA CySA+ and Security+; Microsoft SC-200; Splunk; Sentinel; CrowdStrike; Defender for Endpoint, or equivalent
 

“We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status”

Texting Privacy Policy

  • Message type: Informational; you will receive text messages regarding your application and potentially regarding interview scheduling.
  • No mobile information will be shared with third parties/affiliates for marketing/promotional purposes.
  • Message frequency will vary depending on the application process.Msg & data rates may apply.
  • OPT out at any time by texting "Stop".
Share

Apply for this position

Required*
We've received your resume. Click here to update it.
Attach resume or Paste resume
Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

Human Check*