Apply Now

Senior Cybersecurity Engineer(SOC/Threat & Incident Detection)

Remote • Posted 4 hours ago • Updated 2 hours ago

Contract W2

Contract Independent

12 Months

No Travel Required

Remote

$70 - $80/hr

Fitment

Dice Job Match Score™

🔗 Matching skills to job...

Job Details

Skills

CISM
Cybersecurity
SOC
Threat
Incident Detection

Summary

Sr. Cybersecurity Engineer (SOC/Threat & Incident Detection)

Onsite: Cambridge, MA

Exp: 12+yrs

Required Skills & Experience:

8–12+ years in cybersecurity / SOC / threat detection roles
Experience in L2/L3 SOC or Security Operations leadership.

Technical Skills:

Strong hands-on expertise in:

SIEM: Sentinel / Splunk / QRadar
EDR/XDR tools
Threat hunting & incident response

Deep understanding of:

MITRE ATT&CK
Threat vectors, malware behavior, attack techniques

Experience with:

Log analysis, detection engineering, and correlation rules
Security automation (SOAR)

Cloud & DevSecOps

Experience securing AWS/Azure environments
Familiarity with:

CI/CD security (GitHub, GitLab, Jenkins)
IaC security (Terraform, CloudFormation)
Policy-as-code (OPA, Checkov)

Threat Detection & Incident Response

Lead end-to-end investigation of complex security incidents (malware, phishing, lateral movement, cloud compromise)
Perform advanced threat hunting using SIEM, EDR, and cloud telemetry
Conduct deep forensic analysis (endpoint, network, logs, email headers)

Detection Engineering & SOC Optimization

Design and implement high-fidelity detection rules and use cases
Develop and enhance SOC playbooks aligned with MITRE ATT&CK

Security Tooling & Platforms

Lead implementation and optimization of:

SIEM: Microsoft Sentinel / Splunk / QRadar
EDR/XDR: Defender, CrowdStrike, SentinelOne
Email Security: Proofpoint, Mimecast, Defender for Office
WAF & Network Security tools

Manage integrations across multi-vendor security stack

Automation & SOAR

Develop automation playbooks (SOAR) for triage, enrichment, and response

Cloud Security & DevSecOps

Monitor and secure cloud environments (AWS/Azure)
Implement logging and detection using:

CloudTrail, VPC Flow Logs, Defender, Sentinel

Drive DevSecOps practices (SAST, DAST, IaC scanning, policy-as-code)

Risk, Compliance & Governance

Perform vulnerability assessments and risk analysis
Ensure alignment with frameworks:

NIST, CIS Benchmarks, GDPR, PCI-DSS

Nice to Have

Experience with:

Email security platforms (Proofpoint, Mimecast)
WAF/CDN (Akamai, Cloudflare)
Threat intelligence platforms

Certifications (Preferred)

CISM / CISSP
CEH / CHFI
Vendor certifications (Microsoft Sentinel, QRadar, Splunk)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 91134724
Position Id: 8977774
Posted 4 hours ago

Contact the job poster

Naresh Subraman

Recruiter @ Next Gen IT Inc

View Profile

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Remote

•

Today

Role : Principal Cybersecurity Detection Engineer AI Driven Threats Remote Role JD: The Principal Cybersecurity Detection Engineer AI Driven Threats is a senior individual contributor responsible for advancing the effectiveness and maturity of the Cyber Security Operations Center (CSOC). This role designs, operationalizes, and scales high-confidence detection capabilities to address AI-enabled threats and emerging attack techniques. The position combines deep hands-on detection engineering exper

Easy Apply

Contract

Depends on Experience

SOC Analyst

Remote

•

Today

Job Title: SOC Analyst Job Location: Remote / Home Based Description: AgreeYa is a global Systems Integrator and is seeking an experienced , SOC Analyst to join our growing team. Join our dynamic team as a SOC Analyst where you play a pivotal role in the Security Incident and Event Management (SIEM) workflow, serving as the 24x7 "eyes on glass" who monitor alerts and escalate incidents as necessary. Information Security Analysts are the backbone of the Security Operations Center (SOC), providi

Easy Apply

Contract

Depends on Experience

InfoSec Platform Engineer

Remote

•

2d ago

Role: InfoSec Platform Engineer Duration: Contract Location: REMOTE Responsibilities: Cloud security controls. Operationalize existing security tools through: Control validation and tuning, Enablement of new features, Platform upgrades aligned to security objectives. Partner with Information Security and IT teams to improve Security Operations Center (SOC) efficiency and effectiveness. Support investigation of escalated security incidents in collaboration with the SOC, including identifying unau

Easy Apply

Contract

Depends on Experience

Infosec Platform Engineer

Remote

•

Today

Job Responsibilities & DutiesTooling & Engineering SupportBuild, configure, and provide Tier 2 supportfor security tools, including but not limited to:SIEMIDS/IPSWeb Application Firewall (WAF)NextGeneration Antivirus / Endpoint ProtectionEmail security gatewaysVulnerability management platformsAsset discovery and inventory toolsCloud security controlsOperationalize existing security toolsthrough control validation/tuning, enablement of new features, and platform upgrades aligned to security obje

Easy Apply

Contract

45 - 50

Search all similar jobs

Senior Cybersecurity Engineer(SOC/Threat & Incident Detection)

Dice Job Match Score™

Job Details

Skills

Summary

Threat Detection & Incident Response

Detection Engineering & SOC Optimization

Security Tooling & Platforms

Automation & SOAR

Cloud Security & DevSecOps

Risk, Compliance & Governance

Naresh Subraman

Similar Jobs