Apply Now

Openings - Title: SOC Engineer :: Location: Austin or San Antonio, TX (Onsite – Need local).

Memphis, TN, US • Posted 9 hours ago • Updated 9 hours ago

Contract Corp To Corp

Contract W2

Contract Independent

12 Months

Travel Required

On-site

Depends on Experience

Fitment

Dice Job Match Score™

🔗 Matching skills to job...

Job Details

Skills

SOC
SIEM
TCP/IP
MITRE
ATT&CK

Summary

Role: SOC Engineer

Location: Austin or San Antonio, TX (Onsite – Need local)

Duration: 12+ months (Contract)

Position Description:

L2 SOC Engineer serves as the escalation point for L1 analysts, performing in-depth investigation and validation of security alerts, executing response actions within defined authority, and escalating confirmed incidents to Incident Response or L3. The role blends analytical investigation with engineering tasks such as tuning detections and improving alert fidelity.

Key Responsibilities

Investigate and validate escalations from L1 analysts; determine true positive vs. false positive with documented analysis.
Perform deep-dive analysis using SIEM, EDR, NDR, email security, and threat intelligence platforms.
Execute approved containment actions (host isolation, account disablement, IOC blocking) per client runbooks.
Escalate confirmed or high-severity incidents to Incident Response / L3 with complete investigation notes and evidence.
Tune detection rules and correlation logic to reduce false positives; submit detection improvement requests to L3/engineering.
Maintain and update investigation playbooks, SOPs, and knowledge base articles.
Perform threat hunting tasks based on threat intelligence advisories and hypotheses provided by L3/threat intel.

Required Qualifications

2–4 years of SOC or security monitoring experience, including at least 1 year at L1 or equivalent.
Hands-on experience with at least one enterprise SIEM (Exabeam, Splunk, Sentinel, QRadar) and one EDR platform.
Solid understanding of TCP/IP, DNS, HTTP/S, email protocols, Windows/Active Directory, and Linux fundamentals.
Working knowledge of MITRE ATT&CK, common malware behaviors, and phishing/BEC investigation techniques.
Ability to write clear, structured investigation notes and client-facing alert summaries.
Willingness to work in 24x7 rotational shifts, including nights, weekends, and holidays.

Preferred Qualifications

Certifications: Security+, CySA+, GCIA, GSEC, BTL1/BTL2, vendor certifications (Splunk Core, Exabeam, CrowdStrike).
Basic scripting (Python, PowerShell, KQL/SPL query development).
Exposure to cloud security monitoring (AWS CloudTrail, Azure AD/Entra logs, O365/Google Workspace).

Thanks & Regards

Prateek Singh

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 10423087
Position Id: 8682-19411-
Posted 9 hours ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

SOC Analyst

Remote

•

Today

Summary: We are seeking a highly motivated and experienced Cyber Security Specialist to support swing and night shift operations within our 100% remote 24/7/365 Security Operations Center (SOC). You will monitor, analyze, investigate, and respond to threats across hybrid cloud and on-prem environments. This role is ideal for analysts with a strong investigative mindset, technical depth, and a passion for continuous learning. Job Responsibilities: Perform advanced EDR analysis, including alert t

Easy Apply

Contract

Need SOC Analyst II - Only W2 Candidates

South Carolina

•

Today

Hi Candidates, This is an urgent requirement, need only W2 Candidates. C2C or 1099 candidates are not acceptable. Job Title: SOC Analyst II Client: State of South Carolina Work mode: Remote Note: The candidate must be a straight forward SOC Analyst. Daily Duties / Responsibilities: Continuously review and correlate security event data across SIEM, EDR, IDS/IPS, and threat intelligence sources to identify complex attack patterns, emerging threats, and security incidents. Perform deep-dive analys

Easy Apply

Contract

SOC Analyst (MITRE ATT&CK/CORTEX XSIAM/XDR)

Remote

•

12d ago

11260 - IT - ADMIN - Security Analyst - Project Lead Location - Columbia SC - 100% Remote Duration - 12 Months Start Date - 6 July 2026 Last Date of submission - 9 June 2026 The State of South Carolina is looking for a Security Analyst - Project Lead Interview Process: 1 Round of Virtual/Online Interviews - potential for second round of in-person interviews Additional Information: Preference will be given to candidates that are local to SC and are able to come onsite for project needs. Required

Easy Apply

Full-time, Third Party

$60 - $80

IT Cybersecurity Analyst (Incident Response & Investigation)

Remote

•

Today

Cybersecurity Analyst (Incident Response & Investigation) Role OverviewThe Cybersecurity Analyst is responsible for monitoring, detecting, analyzing, and responding to cybersecurity threats across enterprise environments. This role plays a critical part in conducting end-to-end incident investigations, performing root cause analysis, and strengthening the organizations overall security posture. Key ResponsibilitiesIncident Response & Investigation: Lead end-to-end investigations from detection

Easy Apply

Contract

Depends on Experience

Search all similar jobs

More jobs at Intone Networks Inc. in Memphis, TN