SOC engineer

Job#: 3012815

Job Description:

For immediate response, please send to : WORD resume, desired hourly/salary rate, and best time to speak!

Position: SOC Security Architect

Location: Remote

Duration: Long-term contract

MUST HAVES:

• 8+ years of hands-on cybersecurity experience, including 4+ years in security architecture/design roles
• Proven ability to architect SOC secure solutions across hybrid environments (cloud + on-prem)
• Strong emphasis on SIEM (Splunk) architecture and integration
• Expertise in:
  • Enterprise security control design & defense-in-depth principles
  • Zero Trust architectures & identity-centric access models
  • Threat modeling & architecture risk assessment methodologies
  • Security logging, telemetry, and monitoring architecture
  • Federal cybersecurity standards (NIST 800-53, 800-171, NIST CSF, FedRAMP, RMF)
• Ability to translate risk, threats, and compliance requirements into technical design decisions
• U.S. Citizen with ability to obtain Public Trust clearance

Job Description:

Overview

We are seeking an experienced and forward-thinking SOC Security Architect to lead the design, validation, and governance of enterprise security architecture supporting hybrid environments. This role requires deep technical expertise, strategic design thinking, and the ability to influence across engineering, security, and executive stakeholders.

Responsibilities

• Develop and maintain SOC security architecture for hybrid cloud, data center, identity, and endpoint ecosystems
• Translate federal and organizational security requirements (NIST, RMF, Zero Trust) into enforceable technical control patterns, standards, and baselines
• Conduct threat modeling and architecture risk assessments for new systems, major changes, and modernization initiatives
• Define and document security reference architectures, data flows, segmentation models, and defense-in-depth control layers
• Partner with Cloud, Network, IAM, DevSecOps, and SOC teams to ensure secure-by-design implementation throughout system lifecycles
• Provide architectural review and approval for new deployments, configuration changes, tool onboarding, and emerging initiatives
• Evaluate security technology capabilities and develop multi-year roadmap recommendations based on mission priorities and evolving threat landscape
• Serve as senior technical authority during risk decisions involving compensating controls, architectural exceptions, and system trade-offs
• Align security architecture with SOC detection, incident response, and forensic requirements to ensure visibility and defensibility
• Incorporate lessons learned from incidents, audits, and threat intelligence into future architectural enhancements
• Lead development and maintenance of security patterns, standards, design guides, and architecture diagrams
• Mentor engineers, analysts, and technical leads on secure design practices and architectural thinking
• Represent the SOC in engineering, authorization, and governance forums with Peraton, FSA, ISSOs, and system owners

Required Qualifications

• 8+ years of hands-on cybersecurity experience, including 4+ years in security architecture, engineering, or design roles
• Proven ability to architect SOC secure solutions across hybrid environments (cloud + on-prem), including identity, network, data, and workload security
• Strong emphasis on SIEM (Splunk) architecture and integration
• Expertise in:
  • Enterprise security control design and defense-in-depth principles
  • Zero Trust architectures and identity-centric access models
  • Threat modeling and architecture risk assessment methodologies
  • Security logging, telemetry, and monitoring architecture
  • Federal cybersecurity standards (NIST 800-53, 800-171, NIST CSF, FedRAMP, RMF)
• Ability to translate risk, threats, and compliance requirements into technical design decisions
• Excellent written and verbal communication skills for documentation and executive briefings
• U.S. Citizen with ability to obtain Public Trust clearance

Desired Qualifications

• Experience supporting cybersecurity architecture in Federal, HVA, or regulatory environments
• Familiarity with:
  • Secure architecture for cloud service providers (AWS, Azure)
  • Network segmentation and identity-based access control models
  • Encryption, PKI, secrets management, and data protection strategies
  • SOC-aligned architecture for detection, forensic visibility, and response enablement
• Relevant certifications:
  • CISSP, ISSAP, CCSP, CISM
  • SABSA, GIAC GDSASA
  • Splunk, AWS Cloud
• Prior involvement in security governance boards, ATO/RMF processes, or security control design reviews
• Experience mentoring engineers and contributing to organizational capability maturity

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.

Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.