Job Description

Overview Leading with our people, Digital Consultants mission is to deliver the highest level of professional solutions while being a trusted partner and advisor to our customers. Digital Consultants is a certified SBA 8(a) small, disadvantaged business that supports multiple IT customers within the Federal, civilian and private sectors. Digital Consultants offers our employees growth opportunities, competitive wages, and a full benefits package. Our founding principles, Fairness and Common Sense, make working here more than a job, it’s the Digital family. Duties Lead and coordinate the planning, design, and implementation of the Elastic SIEM for a DoD customer’s projects, including supporting a large-scale migration from Splunk and applying Elastic Stack expertise, SIEM architecture knowledge, and hands-on data ingestion, configuration, tuning, and monitoring in secure environments. Define project goals and objectives, review existing Splunk environments, and identify elements for migration. Analyze and document source types, sources, knowledge objects, dashboards, and searches for transition. Lead the design phase, determine migration criteria and architectural best practices, outline data source requirements, and coordinate with security, network, and application teams to ensure integration. Deploy and configure Elastic Stack components (Elasticsearch, Kibana, and machine learning nodes). Benchmark and tune the system for performance, scalability, and security. Set up data collection pipelines, configure data ingestion, and implement relevant beats and Elastic agents. Define and refine rules, alerts, and custom dashboards tailored to security requirements. Oversee testing phases to validate Elastic SIEM functionality, ensuring it meets security visibility, threat detection, and compliance goals. Manage Elastic SIEM deployment into production, establish monitoring protocols, perform regular updates, and continuously optimize system performance and security. Provide hands-on training, documentation, and resources to staff on Elastic SIEM operations, alert management, and incident response. Requirements Clearance: Top Secret/SCI Education: Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field. Certifications: Advanced certifications in Elastic Stack or SIEM are preferred IAT III Baseline Certification (CISSP or equivalent) with appropriate work role certifications Experience 15 years overall experience in information technology and cybersecurity 10-15 years in SIEM deployment, with specific expertise in Elastic Stack; prior experience with Splunk-to-Elastic migration is highly desirable. Expert knowledge in Elastic Stack (Elasticsearch, Kibana, Logstash, Beats). Strong knowledge of security information and event management (SIEM) systems, data pipelines, and threat detection methodologies. Hands-on experience configuring, tuning, and monitoring Elasticsearch clusters, along with custom alerting and dashboard creation. Required Technical Skills Proficiency in Elasticsearch, including data modeling, querying, and performance tuning. Experience with Logstash for data ingestion and transformation. Knowledge of Kibana for data visualization and dashboard creation. Familiarity with other related technologies such as Kafka, Hadoop, and Spark. Experience in designing and implementing scalable, distributed systems using the ELK stack. Skills in performance tuning and optimization of Elasticsearch clusters. Experience with cloud platforms like AWS, Azure, or Google Cloud for deploying and managing the ELK stack. Proficiency in programming languages such as Python, Java, or Scala. Experience with DevOps practices and tools like Jenkins, Docker, and Kubernetes for continuous integration and deployment. Knowledge of securing Elasticsearch clusters and implementing best practices for data security. Strong analytical and problem-solving skills to troubleshoot and resolve issues. Excellent communication skills to collaborate with cross-functional teams and stakeholders. Ability to work effectively in a team environment and mentor junior team members. Physical: The candidate, with or without reasonable accommodation, must physically be able to sit or stand for extended periods of time; lift objects up to 20 pounds; require frequent physical hand dexterity and repetitive movements. Compensation and Benefits The salary range for this position is $200,000 - 220,000. The company offers the following benefits to permanent, full-time employees: PTO Group health plans Income protection and supplemental benefits 401(k) plan with company matching Health Savings Account (HSA) Flexible Spending Account (FSA) Pet insurance options Employee Assistance Program (EAP) Digital Consultants is committed to hiring and retaining a diverse workforce without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, age, disability, Veterans status or any other protected characteristic. We provide reasonable accommodations to individuals who need assistance during any part of the employment process. If you need assistance navigating Digital Consultants job openings or applying for a position, please email recruiting@digiconintl.com or call 571-306-3444. Please provide your contact information and let us know how we can assist you. #J-18808-Ljbffr Digital Consultants, LLC

Job Tags

Similar Jobs