-
Summary
Software Guidance & Assistance, Inc., (SGA), is searching for a Senior SOC Security Engineer for a CONTRACT assignment with one of our premier Regulatory clients. This position is fully remote.
SHIFT 3: 11PM - 8AM (EST)
We are seeking an experienced Senior SOC Security Engineer with deep technical expertise in alert triage, incident response, cloud security, and network operations to strengthen our security operations.
Responsibilities :
Security Operations & Incident Response- Monitor, detect, and respond to security incidents using SIEM and EDR platforms
- Conduct deep-dive investigations into complex threats and vulnerabilities
- Perform proactive threat hunting and develop detection use cases for emerging attack vectors
- Develop and maintain incident response playbooks and procedures
- Lead incident response efforts during critical security events
- Triage and investigate security alerts across multiple platforms
- Perform root cause analysis on security incidents
- Stay current with threat intelligence, zero-days, and emerging security trends
- Contribute to continuous improvement of SOC processes and procedures
- Mentor SOC analysts and junior team members
- Collaborate cross-functionally with DevOps, engineering, and IT teams
- Communicate security risks and recommendations to technical and non-technical stakeholders
- Drive security awareness and best practices across the organization
- Develop detection use cases and threat hunting methodologies
- Create and maintain application security testing standards
- Guide risk mitigation strategies and remediation efforts
- Enhance SOC capabilities through process optimization and tool enhancement
- Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Systems, or related technical field
- Equivalent experience may be considered for exceptional candidates
- 7+ years in SOC operations and incident response
- Proven track record in alert triage and complex threat investigations
- Hands-on experience with cloud platforms and network security
- SIEM & EDR Platforms
- Proficiency with Splunk, Sentinel, QRadar, CrowdStrike, or similar platforms
- Advanced query development and correlation rule creation
- Cloud & Network Security
- Strong understanding of AWS, Azure, or Google Cloud Platform security configurations
- Container security expertise (Docker, Kubernetes)
- Network architecture and security protocols
- Cloud-native security tool implementation
- Advanced analytical thinking and problem-solving abilities
- Deep networking and cloud architecture knowledge
- Proficiency in scripting and automation (Python, PowerShell, Bash)
- Understanding of modern attack vectors and defense strategies
- Strong attention to detail and investigative mindset
- Excellent written and verbal communication
- Ability to work effectively under pressure during incidents
- Cross-functional collaboration and stakeholder management
- Leadership and mentoring capabilities
- CISSP, CASE, OSCP, CSSLP, or GIAC certifications preferred
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.
#LI-KJ1 -
Job Description
Software Guidance & Assistance, Inc., (SGA), is searching for a Senior SOC Security Engineer for a CONTRACT assignment with one of our premier Regulatory clients. This position is fully remote.
SHIFT 3: 11PM - 8AM (EST)
We are seeking an experienced Senior SOC Security Engineer with deep technical expertise in alert triage, incident response, cloud security, and network operations to strengthen our security operations.
Responsibilities :
Security Operations & Incident Response- Monitor, detect, and respond to security incidents using SIEM and EDR platforms
- Conduct deep-dive investigations into complex threats and vulnerabilities
- Perform proactive threat hunting and develop detection use cases for emerging attack vectors
- Develop and maintain incident response playbooks and procedures
- Lead incident response efforts during critical security events
- Triage and investigate security alerts across multiple platforms
- Perform root cause analysis on security incidents
- Stay current with threat intelligence, zero-days, and emerging security trends
- Contribute to continuous improvement of SOC processes and procedures
- Mentor SOC analysts and junior team members
- Collaborate cross-functionally with DevOps, engineering, and IT teams
- Communicate security risks and recommendations to technical and non-technical stakeholders
- Drive security awareness and best practices across the organization
- Develop detection use cases and threat hunting methodologies
- Create and maintain application security testing standards
- Guide risk mitigation strategies and remediation efforts
- Enhance SOC capabilities through process optimization and tool enhancement
- Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Systems, or related technical field
- Equivalent experience may be considered for exceptional candidates
- 7+ years in SOC operations and incident response
- Proven track record in alert triage and complex threat investigations
- Hands-on experience with cloud platforms and network security
- SIEM & EDR Platforms
- Proficiency with Splunk, Sentinel, QRadar, CrowdStrike, or similar platforms
- Advanced query development and correlation rule creation
- Cloud & Network Security
- Strong understanding of AWS, Azure, or Google Cloud Platform security configurations
- Container security expertise (Docker, Kubernetes)
- Network architecture and security protocols
- Cloud-native security tool implementation
- Advanced analytical thinking and problem-solving abilities
- Deep networking and cloud architecture knowledge
- Proficiency in scripting and automation (Python, PowerShell, Bash)
- Understanding of modern attack vectors and defense strategies
- Strong attention to detail and investigative mindset
- Excellent written and verbal communication
- Ability to work effectively under pressure during incidents
- Cross-functional collaboration and stakeholder management
- Leadership and mentoring capabilities
- CISSP, CASE, OSCP, CSSLP, or GIAC certifications preferred
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.
#LI-KJ1 -
ABOUT THE COMPANY
-
-
Government Careers
Show moreGovernment jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.
Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.
Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.
-