SOC Engineer (Application Security)

Description
We are seeking a highly skilled Senior SOC Security Engineer with deep expertise in Application Security to join our dynamic cybersecurity team. This role requires flexibility to support our 24x7x365 Security Operations Center, including regular off-hours coverage. This role blends real-time threat detection and response with proactive application security strategies to protect our digital assets and infrastructure.
As a Senior member of the SOC, you will lead incident response efforts, mentor junior analysts, and collaborate with development teams to embed security into the software development lifecycle (SDLC). You'll be instrumental in shaping our security posture across both operational and application layers.
Soc Security Engineer
24/7 SOC
Mid to Sr Security Engineer
Top Skills:

• (1) SOC experience (triage, alert monitoring) ** (beyond threat hunting, tool config, not handing off to

engineer)

• (2)Supply Chain Security perspective - look at tools they're considering

Tool evaluation : Jfrog Curation, Socket.net (one will be a solution)
Night shift (3rd) 11pm est - 8am est (9hr shift)
Weekend (once a month) every 5th week. (sat/sun same shift as during the week)
Remote - has to work shift in EST hours.
Key Responsibilities
Design and implement security controls for third-party software dependencies and open-source components
Monitor, detect, and respond to security incidents
Develop and execute vulnerability management strategies with emphasis on exploitability and reachability analysis
Conduct deep-dive investigations into Software supply chain Security (SSCS) threats, compromised dependencies, and malicious packages
Perform threat hunting for emerging attack vectors
Assess and mitigate risks associated with software dependencies across enterprise systems and applications
Lead incident response efforts for identity-based attacks and supply chain compromises
Develop detection use cases and threat models specific to SSCS attack vectors
Establish security practices for evaluating and vetting third-party packages and libraries
Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines
Perform vulnerability analysis on 3rd party CVE's with in the FINRA context and work with engineering teams to fix the vulnerability.
Required Skills & Qualifications
Bachelor's or master's degree in computer science, Cybersecurity, Information Systems, or a related technical field
Equivalent experience may be considered in lieu of formal education for exceptional candidates
5+ years of experience in SOC operations and incident response
Desired Certifications such as CISSP, CASE, OSCP, CSSLP, or GIAC
Technical Skills
SIEM & EDR Tools: Proficiency with platforms like Splunk, Sentinel, QRadar, CrowdStrike
Deep understanding of SSCS attack vectors (dependency confusion, compromised packages, malicious commits, backdoors)
Strong knowledge of package managers (npm, PyPI, Maven, NuGet, etc.) and their security implications
Hands-on experience with artifact repository management tools
Application Security Tools: Experience with SAST, DAST, and SCA tools (e.g., Veracode, Burp Suite, SonarQube)
Secure Coding Practices: Deep understanding of OWASP Top 10, SANS 25, and remediation techniques
Cloud Security: Familiarity with AWS, Azure, or Google Cloud Platform security configurations and container security
Proficiency with software composition analysis (SCA) tools and vulnerability reachability concepts
Familiarity with cloud platforms (AWS, Azure, Google Cloud Platform) and container security
Experience integrating security into CI/CD pipelines
Familiarity with DevSecOps principles
Soft Skills & Leadership
Strong analytical thinking and attention to detail
Excellent communication skills for cross-functional collaboration
Ability to mentor junior analysts and lead incident response efforts
Job Type & Location
This is a Contract position based out of Washington D.C., DC.
Pay and Benefits
The pay range for this position is $85.00 - $95.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: Medical, dental & vision Critical Illness, Accident, and Hospital 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available Life Insurance (Voluntary Life & AD&D for the employee and dependents) Short and long-term disability Health Spending Account (HSA) Transportation benefits Employee Assistance Program Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in Washington D.C.,DC.
Application Deadline
This position is anticipated to close on Jan 31, 2026.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.