Detection Analyst; Elastic

Position Description

Valiant Solutions is seeking a Secret‑cleared Detection Analyst (Elastic) to join our rapidly growing and innovative cybersecurity team. The role focuses on designing, developing, and implementing detection mechanisms to identify cyber threats within a Cybersecurity Service Provider (CSSP) environment.

Location:

100% onsite in Charleston, SC.

Clearance Required:

Active Secret.

• 5+ years of experience working in a CSSP, SOC, or similar environment.
• 2+ years of experience with signature development, detection logic creation, and optimization on multiple platforms.
• Hands‑on experience using the Elastic Stack, Kibana Query Language (KQL), Event Query Language (EQL), Elasticsearch Query Language, and/or Elastic Defend.
• Experience with threat intelligence platforms and indicator management.
• Proficient knowledge of detection creation and implementation processes.
• Expertise in IDS/IPS solutions, including signature development and optimization.
• Strong understanding of the indicator lifecycle.
• Effective verbal and written communication skills.
• Ability to solve complex problems independently.
• Preferred certifications:
  Elastic Certified Analyst, Elastic Certified SIEM Analyst, Elastic Certified Engineer.

• Develop, implement, and maintain custom, high‑fidelity detection rules and logic in the Elastic Security platform targeting adversary TTPs mapped to the MITRE ATT&CK framework.
• Develop and prioritize risk‑based alerting mechanisms to focus detection efforts on high‑impact threats.
• Analyze threat intelligence to create and refine detection mechanisms tailored to the customer’s environment.
• Validate and test detection rules to minimize false positives and enhance threat identification capabilities.
• Collaborate with DCO Watch Analysts to integrate detection mechanisms into monitoring and incident response workflows.
• Maintain and update detection tools and signatures in response to evolving threats, ensuring compliance with applicable directives.
• Compile and maintain SOP documentation for detection creation and implementation processes.
• Coordinate with reporting agencies and subscriber sites to align detection strategies with operational needs.
• Participate in program reviews, product evaluations, and onsite certification evaluations.
• Overtime and up to 10% travel may be required.

Valiant Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, marital status, or veteran status.

Sitting or standing at a desk for prolonged periods and consistent operation of a computer. Frequent communication via electronic communication, phones, and in person. Occasionally lift or move moderate amounts of weight, typically less than 20 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.

By submitting a resume for this position, you authorize Valiant Solutions to share your resume and personal information with its subsidiaries, affiliates, and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education, and experience.