Sr SOC Engineer (Splunk ES & SOAR)

Software Guidance & Assistance, Inc., (SGA), is searching for an Senior SOC Engineer (Splunk ES & SOAR)for a contract assignment with one of our premier Regulatory clients. Must be local and willing to go to these office locations: Rockville MD or Tysons Corner VA.

Shift to be determined.

Our client is seeking a highly skilled Senior SOC Security Engineer with deep expertise in Splunk ES and Splunk SOAR to join their dynamic cybersecurity team. This role blends real-time threat detection and response with deep knowledge of Splunk ES and Splunk SOAR for automation priorities.

As a senior member of the SOC, you will lead incident response efforts, mentor junior analysts, and collaborate with internal Splunk team on automation project initiatives.

Responsibilities :

• Monitor, detect, and respond to security incidents using SIEM and EDR tools
• Conduct deep-dive investigations into complex threats and vulnerabilities
• Perform threat hunting and develop detection use cases for emerging attack vectors
• Collaborate with internal Splunk team on automation initiatives
• Implementation and configuration of SOAR
• Develop and implement automation playbooks and orchestrations for incident response, threat hunting, and other security operations tasks
• Develop and maintain playbooks for incident response and other ad hoc use cases
• Mentor SOC analysts and contribute to continuous improvement of SOC processes
• Stay current with threat intelligence, zero-days, and security trends

Required Skills:

• Bachelor's or Master's degree in Cybersecurity, Information Systems, or a related technical field
• Equivalent experience may be considered in lieu of formal education for exceptional candidates
• 5+ years of experience in SOC operations and incident response
• Desired Certifications such as CISSP, Splunk Certified SOAR Engineer, CEH

Technical Skills:

• SIEM & EDR Tools: Proficiency with platforms like Splunk, Sentinel, CrowdStrike
• Experience with RESTful API's, webhooks and other integration methods
• Familiar with programming/scripting languages (e.g. Python, Powershell, Bash) for automation
• Cloud Security: Familiarity with AWS, Azure, or Google Cloud Platform security configurations and container security
• Threat Modeling & Vulnerability Management: Ability to assess risks and guide mitigation strategies
• In-depth technical skills for troubleshooting and security related investigations

Additional Skills & Leadership:

• Strong analytical thinking and attention to detail
• Excellent communication skills for cross-functional collaboration
• Ability to mentor junior analysts and lead incident response efforts

SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .

SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.

#LI-KJ1