Veilant is looking for a Cyber Defense Analyst to join our Information Security team and help defend our enterprise environment against active and emerging cyber threats.In this role, you will monitor network and endpoint activity, investigate security alerts, tune detections, and help surface anomalous behavior across our SIEM and EDR stack, including Microsoft Defender for Endpoint, Elastic, and Splunk.This role is ideal for someone with a strong technical foundation, curiosity about how systems behave, and hands-on interest in alert triage, detection engineering, threat hunting, and incident response.What You’ll DoMonitor endpoint and network activity using Microsoft Defender for Endpoint, Elastic, Splunk, and related security tools.Triage and investigate alerts, distinguishing benign activity from suspicious or malicious behavior.Develop, tune, and maintain detections using KQL, ES|QL, SQL, SPL, or similar query languages.Translate threat intelligence, IOCs, TTPs, and emerging threat reporting into actionable detections, dashboards, queries, and hunts.Conduct targeted threat hunts using frameworks such as MITRE ATT&CK.Document incidents, including timelines, indicators, scope, findings, remediation steps, and lessons learned.Build dashboards and visualizations that improve visibility into enterprise activity and anomalies.Contribute to playbooks that improve the team’s speed, consistency, and effectiveness during investigations.Collaborate with security, IT, and Engineering teams to support investigations and response activities.What Success Looks LikeIn the first six months, you will build a working understanding of Veilant’s environment, independently triage alerts, improve detection logic, contribute to threat hunts, document incidents, and help strengthen playbooks that make the team faster and more effective.