Overview
On Site
USD 55.00 - 80.00 per hour
Full Time
Skills
Security Clearance
Network
Cyber Security
Spectrum
FOCUS
Risk Assessment
Collaboration
Workflow
Regulatory Compliance
Standard Operating Procedure
SOP
Documentation
Reporting
System On A Chip
Kibana
Elasticsearch
Threat Analysis
Management
IPS
Optimization
Communication
DoD
Incident Management
Splunk
Intrusion Detection
IDS
Microsoft Windows Server
Microsoft Operating Systems
SIEM
Packet Analysis
Wireshark
Information Retrieval
Investor Relations
International Relations
Microsoft Windows
Training
GSEC
Security+
SSCP
Customer Engagement
CISA
CISSP
GCIH
Certified Ethical Hacker
Cisco Certifications
Job Details
Job Title: Detection Engineer - Elastic SME
Workplace Type: Hybrid
Location: Charleston, SC
Clearance: Secret Clearance, with the ability to obtain TS/SCI
Top Skills:
Incident response | Security | Splunk | intrusion detection | Ids | CND | windows server | Siem | Packet Analysis | Wireshark
Top Skills Details:
1) IAT II and CSSP compliant
2) Experience in threat detection engineering, threat hunting, or a related role with hands-on experience using the Elastic Stack, Kibana Query Language (KQL), Event Query Language (EQL), Elasticsearch Query Language (ES|QL) and/or Elastic Defend.
3) Splunk, Carbon Black Response, or Fidelis Network
Position Description:
The Detection Engineer is responsible for designing, developing, and implementing detection mechanisms to identify cyber threats within a Cybersecurity Service Provider (CSSP) environment. The role focuses on creating and managing IDS/IPS signatures, log correlation rules, and other detection tools based on indicator lifecycle analysis. The Detection Engineer collaborates with Defensive Cyber Operations (DCO) Watch Analysts and other teams to ensure timely and effective threat detection, adhering to CJCSM 6510.01B reporting requirements and supporting the CSSP's mission to protect data across a wide spectrum of sources and locations.
Position Requirements and Duties:
Minimum Qualifications:
Bachelor's Degree in a relevant discipline and 5 years or at least 8 years of experience working in a CSSP, SOC, or similar environment
2+ years of experience with signature development, detection logic creation, and optimization on multiple platforms
Desired Qualifications:
Required Certifications
Skills
Incident response, Security, Splunk, intrusion detection, IDS, CND, Windows Server, SIEM, Packet Analysis, Wireshark, Red Team, Blue Team, MITRE ATT&CK, carbon black, Fidelis
Top Skills Details
Incident response, Security, Splunk, intrusion detection, IDS, CND, Windows server, SIEM, Packet Analysis, Wireshark
Additional Skills & Qualifications
Must be IAT II and CND IR compliant. Will be required to obtain Windows OS cert - Fed VTE skill soft training with fulfill requirement (Free)
IAT II Certs and Above: CCNA Security, CySA+ **, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP
CSSP Certs: CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+ **, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+, SSCP, CHFI, CFR, CND, CCNA-Security, GCFA, CISA, GSNA,, CISM, CISSP, CCISO
Experience Level
Expert Level
Job Type & Location
This is a Contract position based out of North Charleston, SC.
Pay and Benefits
The pay range for this position is $55.00 - $80.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: Medical, dental & vision Critical Illness, Accident, and Hospital 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available Life Insurance (Voluntary Life & AD&D for the employee and dependents) Short and long-term disability Health Spending Account (HSA) Transportation benefits Employee Assistance Program Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in North Charleston,SC.
Application Deadline
This position is anticipated to close on Dec 19, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Workplace Type: Hybrid
Location: Charleston, SC
Clearance: Secret Clearance, with the ability to obtain TS/SCI
Top Skills:
Incident response | Security | Splunk | intrusion detection | Ids | CND | windows server | Siem | Packet Analysis | Wireshark
Top Skills Details:
1) IAT II and CSSP compliant
2) Experience in threat detection engineering, threat hunting, or a related role with hands-on experience using the Elastic Stack, Kibana Query Language (KQL), Event Query Language (EQL), Elasticsearch Query Language (ES|QL) and/or Elastic Defend.
3) Splunk, Carbon Black Response, or Fidelis Network
Position Description:
The Detection Engineer is responsible for designing, developing, and implementing detection mechanisms to identify cyber threats within a Cybersecurity Service Provider (CSSP) environment. The role focuses on creating and managing IDS/IPS signatures, log correlation rules, and other detection tools based on indicator lifecycle analysis. The Detection Engineer collaborates with Defensive Cyber Operations (DCO) Watch Analysts and other teams to ensure timely and effective threat detection, adhering to CJCSM 6510.01B reporting requirements and supporting the CSSP's mission to protect data across a wide spectrum of sources and locations.
Position Requirements and Duties:
- Develop, implement, and maintain custom, high-fidelity detection rules and logic in the Elastic Security platform specifically targeting adversary TTPs mapped to the MITRE ATT&CK framework.
- Develop and prioritize risk-based alerting mechanisms to focus detection efforts on high-impact threats, aligning with organizational risk assessments
- Analyze threat intelligence to create and refine detection mechanisms tailored to the customer's environment
- Validate and test detection rules to ensure accuracy, minimize false positive and benign positive matches, and enhance threat identification capabilities
- Collaborate with DCO Watch Analysts to integrate detection mechanisms into monitoring and incident response workflows
- Maintain and update detection tools and signatures in response to evolving threats, ensuring compliance with CJCSM 6510.01B and other applicable directives
- Compile and maintain internal standard operating procedure (SOP) documentation for detection creation and implementation processes
- Coordinate with reporting agencies and subscriber sites to align detection strategies with operational needs and threat intelligence
- Participate in program reviews, product evaluations, and onsite certification evaluations to assess detection tool efficacy
- Overtime may be required to support detection implementation or incident response actions (Surge)
- Up to 10% travel may be required
Minimum Qualifications:
Bachelor's Degree in a relevant discipline and 5 years or at least 8 years of experience working in a CSSP, SOC, or similar environment
2+ years of experience with signature development, detection logic creation, and optimization on multiple platforms
Desired Qualifications:
- Experience in threat detection engineering, threat hunting, or a related role with hands-on experience using the Elastic Stack, Kibana Query Language (KQL), Event Query Language (EQL), Elasticsearch Query Language (ES|QL), and/or Elastic Defend.
- Experience with threat intelligence platforms and indicator management
- Proficient knowledge of detection creation and implementation processes
- Expertise in IDS/IPS solutions, including signature development and optimization
- Strong understanding of the indicator lifecycle, including initial discovery, development, operational maturity, and long-term sustainment
- Effective verbal and written communication skills
- Ability to solve complex problems independently
- Preferred certifications: Elastic Certified Analyst, Elastic Certified SIEM Analyst, Elastic Certified Engineer.
Required Certifications
- Must have requisite certifications to fulfill DoD 8570 IAT Level II and CSSP-specific requirements
Skills
Incident response, Security, Splunk, intrusion detection, IDS, CND, Windows Server, SIEM, Packet Analysis, Wireshark, Red Team, Blue Team, MITRE ATT&CK, carbon black, Fidelis
Top Skills Details
Incident response, Security, Splunk, intrusion detection, IDS, CND, Windows server, SIEM, Packet Analysis, Wireshark
Additional Skills & Qualifications
Must be IAT II and CND IR compliant. Will be required to obtain Windows OS cert - Fed VTE skill soft training with fulfill requirement (Free)
IAT II Certs and Above: CCNA Security, CySA+ **, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP
CSSP Certs: CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+ **, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+, SSCP, CHFI, CFR, CND, CCNA-Security, GCFA, CISA, GSNA,, CISM, CISSP, CCISO
Experience Level
Expert Level
Job Type & Location
This is a Contract position based out of North Charleston, SC.
Pay and Benefits
The pay range for this position is $55.00 - $80.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: Medical, dental & vision Critical Illness, Accident, and Hospital 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available Life Insurance (Voluntary Life & AD&D for the employee and dependents) Short and long-term disability Health Spending Account (HSA) Transportation benefits Employee Assistance Program Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in North Charleston,SC.
Application Deadline
This position is anticipated to close on Dec 19, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.