Sr. SOC Engineer

Hybrid in Rockville, MD, US • Posted 2 hours ago • Updated 2 hours ago

Full Time

On-site

ConsultNet, LLC

Fitment

Dice Job Match Score™

⏳ Almost there, hang tight...

Job Details

Skills

DMV
Design Of Experiments
Security Operations
Real-time
Software Development
Software Development Methodology
Open Source
Vulnerability Management
Use Cases
DevOps
Computer Science
Cyber Security
Information Systems
System On A Chip
CISSP
OSCP
SIEM
Splunk
IBM QRadar
Supply Chain Management
Apache Maven
NuGet
Software Security
Burp Suite
OWASP
SANS
Cloud Security
Amazon Web Services
Microsoft Azure
Google Cloud Platform
Google Cloud
SCA
Security Controls
Continuous Integration
Continuous Delivery
DevSecOps
Soft Skills
Leadership
Analytical Skill
Conflict Resolution
Problem Solving
Attention To Detail
Collaboration
Mentorship
Incident Management
Management
Managed Services
Communication
Law

Summary

Title: Sr. SOC Engineer
Location : DMV
Target Start Date : ASAP
Type: contract
Pay Rate: DOE

About the Role

We are seeking a highly skilled Senior SOC Security Engineer with deep expertise in Application Security to join a dynamic cybersecurity team. This role requires flexibility to support a 24x7x365 Security Operations Center, including regular off-hours coverage.

The position blends real-time threat detection and incident response with proactive application security strategies to protect enterprise digital assets and infrastructure. As a senior member of the SOC, you will lead incident response efforts, mentor junior analysts, and collaborate closely with engineering teams to embed security throughout the software development lifecycle (SDLC).

Key Responsibilities

Design and implement security controls for third-party software dependencies and open-source components
Monitor, detect, investigate, and respond to security incidents
Develop and execute vulnerability management strategies with emphasis on exploitability and reachability analysis
Conduct deep-dive investigations into software supply chain security (SSCS) threats, including compromised dependencies and malicious packages
Perform proactive threat hunting for emerging attack vectors
Assess and mitigate risks associated with software dependencies across enterprise systems and applications
Lead incident response efforts related to identity-based attacks and supply chain compromises
Develop detection use cases and threat models specific to SSCS attack vectors
Establish security practices for evaluating, vetting, and approving third-party packages and libraries
Collaborate with DevOps and engineering teams to integrate security controls into CI/CD pipelines
Analyze third-party vulnerabilities (CVEs) in an enterprise context and partner with engineering teams on remediation efforts

Required Skills & Qualifications

Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Systems, or a related technical field
Equivalent professional experience may be considered in lieu of formal education
5+ years of experience in SOC operations, security monitoring, and incident response
Desired certifications include CISSP, CASE, OSCP, CSSLP, GIAC, or equivalent

Technical Skills

SIEM and EDR tools: Experience with platforms such as Splunk, Sentinel, QRadar, CrowdStrike, or similar
Strong understanding of software supply chain security attack vectors (e.g., dependency confusion, compromised packages, malicious commits, backdoors)
In-depth knowledge of package managers (npm, PyPI, Maven, NuGet, etc.) and associated security risks
Hands-on experience with artifact repository management tools
Application security tools: SAST, DAST, and SCA tools (e.g., Veracode, Burp Suite, SonarQube or equivalents)
Secure coding practices: Deep understanding of OWASP Top 10, SANS Top 25, and remediation techniques
Cloud security: Familiarity with AWS, Azure, or Google Cloud Platform security configurations and container security
Proficiency with software composition analysis (SCA) tools and vulnerability reachability concepts
Experience integrating security controls into CI/CD pipelines
Familiarity with DevSecOps principles and practices

Soft Skills & Leadership

Strong analytical and problem-solving skills with attention to detail
Excellent written and verbal communication skills for cross-functional collaboration
Proven ability to mentor junior analysts and lead incident response initiatives

Welcome to ConsultNet, a premier national provider of technology talent and solutions. Our expertise spans across project services, contract-to-hire, direct search, and managed services onshore, nearshore, and hybrid.
For over 25 years, we have connected thousands of consultants with meaningful roles through a personal, communication-driven approach, partnering with a diverse client base to build high-performing teams and create lasting impact.
Our comprehensive service offerings cover a wide range of technology and engineering positions across key markets nationwide. Learn more at .

We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: cxcnetut
Position Id: 26-00134
Posted 2 hours ago

Company Info

About ConsultNet, LLC

ConsultNet is a technology and engineering staffing company that pairs skilled technical and business professionals from around the world with successful companies to tackle all kinds of technology-based business challenges. Using an approach that focuses on building deep, strategic relationships with both its business clients and a large network of technology professionals, ConsultNet serves customers in a wide range of industries, including aerospace, communications, education, finance, government, healthcare, technology, and many others.

ConsultNet recruiters and employees are motivated, flexible, and completely focused on providing outstanding personalized service. This elite team understands the needs of every client and has the business acumen and experience to deliver high-end technology and engineering solutions that perfectly meet customer needs.

The Company attracts top technology talent in a fiercely competitive environment by developing strong relationships with a diverse network of top consultants, providing them with outstanding opportunities, investing in their personal and professional growth, and offering them the flexibility and freedom to pursue a challenging, rewarding career path.

With a rapidly growing national presence and a reputation for providing exceptional service, ConsultNet has been contributing to the growth and success of its clients' businesses since 1996. No matter how big ConsultNet becomes, the organization's people, relationships, and outstanding service will always be the key ingredients it uses to help customers find the technology talent they need.

Why ConsultNet?
At ConsultNet, we're ready to help you get in on the ground floor of an innovative, cutting-edge startup company, team you up with a Fortune 500 powerhouse, or anything in between. Regardless of what types of opportunities interest you, we can always open new doors, create exciting new opportunities, and help you show off your talents and put your skills to the test.

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.