onsite

Principal Cyber Technical Analyst - Armison Tech

Software Engineer

Lead advanced cyber security investigations and threat‑hunting initiatives for government clients, leveraging SIEM platforms, Python automation, and cloud security expertise to protect critical infrastructure.

About the role

Key Responsibilities

Design and execute advanced threat‑hunting and incident‑response investigations across complex government networks.
Develop and maintain detection rules, dashboards, and automated playbooks in SIEM platforms (e.g., Splunk, QRadar).
Write Python scripts and leverage cloud services (AWS) to automate data collection, enrichment, and reporting.
Collaborate with engineering and architecture teams to remediate vulnerabilities and improve security posture.
Provide technical mentorship to junior analysts and contribute to knowledge‑base documentation.

Requirements

5+ years of hands‑on experience in cyber security, with a focus on threat hunting and incident response.
Proficiency in SIEM technologies and creating detection logic.
Strong scripting skills in Python for automation and data analysis.
Experience securing cloud environments, preferably AWS.
Clear communication skills and ability to work with government stakeholders.

Skills

siempythonaws

CompanyArmison Tech

DepartmentEngineering

LocationChantilly, Virginia, United States

Experience7+ years

Tenurefull-time

LevelLead

Posted June 24, 2026