Sr Elastic Engineer (EDR/Defend Focus)

Job#: 3017651Job Description:CANDIDATES MUST HOLD AN ACTIVE SECRET SECURITY CLEARANCE OR HIGHER TO BE CONSIDERED FOR THE ROLESr. Elastic Engineer$55 - $70 an hr/W2Duration: 6mth CTHLocation: Colorado Springs, CO (Schriever SFB) or (Huntsville, AL, Redstone Arsenal)Onsite requirements: 100% OnsiteRequired working hours: Mon-Fri / Day ShiftDescription of Duties:The Senior Elastic Engineer (EDR/Defend Focus) supports the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract. The candidate will:u00b7 Be a key contributor to the design, implementation, and maintenance of our Elastic Stack environment, with a primary focus on leveraging Elastic EDR and Defend capabilities to enhance our cybersecurity posture.u00b7 Be responsible for ensuring the security, scalability, and performance of our Elastic Stack infrastructure, and will work closely with other teams to integrate it with existing security tools and workflows.Key Responsibilities:u00b7 Architect, deploy, and maintain a highly available and scalable Elastic Stack environment, specializing in Elastic EDR/ Defend.u00b7 Configure and optimize Elastic EDR/Defend policies and data pipelines for threat detection, prevention, and security event enrichment.u00b7 Develop and maintain Kibana dashboards and visualizations for real-time security monitoring, threat identification, and incident response tracking.u00b7 Perform proactive threat hunting and in-depth security analysis using Elastic EDR/Defend capabilities.u00b7 Troubleshoot complex Elastic Stack issues, develop comprehensive documentation, and mentor junior engineers to ensure operational excellence.The successful candidate will have:u00b7 Expert knowledge of the Elastic Stack (Elasticsearch, Logstash, Kibana)u00b7 Expert knowledge of Elastic EDR and Defend capabilitiesu00b7 Strong understanding of data indexing, sharding, replication, and data lifecycle management.u00b7 Strong understanding of Linux and Windows operating systemsu00b7 Strong understanding of security principles, threat detection, and incident response.u00b7 Knowledge of common coding flaws and security vulnerabilities.u00b7 Knowledge of network protocols and security concepts.u00b7 Knowledge of security frameworks and compliance standards (e.g., NIST, FedRAMP).u00b7 Ability to interpret and incorporate data from multiple tool sources.u00b7 Ability to analyze complex requirements and translate them into clear, actionable tasks.u00b7 Ability to work independently and as part of a team.u00b7 Excellent communication and interpersonal skills.Qualifications:Basic Requirements:u00b7 Must have 10, or more, years of general (full-time) work experienceu00b7 May be reduced with completion of advanced educationu00b7 Must have 5, or more, years of experience working with the Elastic Stack (Elasticsearch, Logstash, Kibana).u00b7 Must have 3, or more, years of experience specifically implementing and managing Elastic EDR and Defend solutions.u00b7 Must have 2, or more, years of experience in a lead or senior role, mentoring and guiding other team members.u00b7 Must have 1, or more, years of experience working in a management or leadership roleu00b7 Must have a strong understanding of security principles, threat detection, and incident response.u00b7 Must have experience with data ingestion, processing, and enrichment techniques.u00b7 Must be proficient in at least one scripting language (e.g., Python, Bash, PowerShell).u00b7 Must have aa current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP)u00b7 Must have an active DoD Secret Security Clearanceu00b7 Must be able to obtain an active DoD Top Secret Security ClearanceDesired Requirements:u00b7 Have experience with Linux and Windows Server administration.u00b7 Have expe ience with containerization technologies (Docker, Kubernetes).u00b7 Have experience with automation tools (Ansible, Puppet, Chef).u00b7 Have experience with cloud platforms (AWS, Azure, GCP).u00b7 Have experience with SIEM technologies and security event management.u00b7 Have experience with security frameworks and compliance standards (e.g., NIST, FedRAMP).u00b7 Have a strong understanding of network protocols and security concepts.u00b7 Have experience with threat intelligence platforms and data feeds.u00b7 Have 1, or more, relevant security certifications (e.g., CISSP, CISM, CEH).u00b7 Have experience tuning and optimizing Elastic EDR and Defend for specific threat landscapes.Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.EEO EmployerApex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffingu00ae in Talent Satisfaction in the United States and Great Place to Worku00ae in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click [here](

Created: 2026-01-19