A&M Technologies, Inc. ยท 2 days ago
Sr. Elastic Defend Architect (SECRET CLEARANCE REQUIRED)
Colorado Springs, CO
Full-time
Onsite
Senior LevelA&M Technologies, Inc. is seeking an experienced Elastic Defend Architect to join their partner's Managed Security Service Provider (MSSP) team. The role involves designing and implementing scalable endpoint security architectures while collaborating with cross-functional teams to maintain high-performing Elastic Defend environments for cybersecurity operations.
Information Technology & Services
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Architect, design, and deploy Elastic Defend across large and distributed enterprise environments
Configure and manage Fleet Servers, agent enrollment workflows, endpoint security policies, and security integrations
Design and maintain scalable Elasticsearch clusters supporting Elastic Security workloads
Build and optimize ingestion pipelines for endpoint telemetry, audit logs, alerts, and other security-relevant data
Improve Elastic Security performance through index management, ILM tuning, mapping optimization, and ingest pipeline enhancements
Develop and maintain observability frameworks using Kibana and related tooling, ensuring complete visibility into cluster and EDR operations
Implement and support logging, metrics, and tracing systems needed for real-time monitoring and detection
Analyze and visualize datasets to support threat hunting, anomaly detection, and operational insights
Troubleshoot Elastic Defend agent behavior, endpoint policy issues, resource conflicts, and integration failures
Ensure data integrity, security, and compliance across all Elastic Security components
Collaborate closely with SOC, Incident Response, DevOps, cloud, and platform engineering teams to align architecture with mission requirements
Provide technical guidance, mentoring, and subject-matter expertise to internal teams and external stakeholders
Document system architectures, runbooks, deployment patterns, procedures, and best practices
Stay up to date on emerging Elastic Security capabilities, endpoint threat trends, and evolving cybersecurity technologies
Qualification
Required
Outstanding verbal and written communication abilities
Ability and willingness to support domestic or international on-site travel as needed
Possess and maintain a valid U.S. Passport
***Must have a Secret clearance, at minimum.***
Preferred
Experience architecting or administering Elastic Security / Elastic Defend solutions in production environments
Certifications such as Elastic Certified Engineer, Elastic Certified Analyst, or Elastic Security Engineer
Strong understanding of SIEM and EDR concepts and hands-on experience with platforms such as Elastic, Splunk, QRadar, LogRhythm, or Sentinel
Proficiency with Linux/Unix systems, networking fundamentals, and cloud environments (AWS, Azure, GCP)
Experience with DevOps/SRE methodologies, including automation, CI/CD, configuration management, and infrastructure-as-code
Strong scripting abilities in Python, PowerShell, or Bash for automation and data transformation
Deep knowledge of modern threat landscapes, endpoint attack techniques, and defensive security controls
Familiarity with search/indexing technologies such as Solr or Lucene is a plus
Company
A&M Technologies, Inc.
As a minority-owned small business deeply committed to our customers, we take pride in our journey since our establishment in 2014.
Founded in 2014
11-50 employees
Funding
Current Stage
Early StageLeadership Team
Amit Bhatia
Chief Executive Officer
Company data provided by crunchbase