Senior SOC Engineer (Detection Engineering & Automation)

Hybrid in Rockville, MD, US • Posted 9 days ago • Updated 10 hours ago

Full Time

On-site

ConsultNet, LLC

Fitment

Dice Job Match Score™

🤯 Applying directly to the forehead...

Job Details

Skills

Design Of Experiments
Roadmaps
Orchestration
Use Cases
IT Architecture
Collaboration
Threat Analysis
Research
Incident Management
SIEM
Dashboard
Workflow
Scripting
Python
Windows PowerShell
Bash
Cloud Computing
Analytical Skill
Splunk
Analytics
Continuous Integration
Continuous Delivery
Mentorship
CISSP
Security Operations
IT Management
System On A Chip
Management
Managed Services
Communication
Law

Summary

Title: Senior SOC Engineer (Detection Engineering & Automation)
Location : Rockville, Maryland or McLean, VA
Target Start Date : ASAP
Type: contract
Pay Rate: DOE

We are building a mature, scalable Security Operations Center and are seeking a senior SOC engineer with deep experience in detection engineering and security automation. This role is ideal for someone who has worked in a high-performing SOC and can help define what "good" looks like-technically and operationally.

You will lead efforts to design effective detections, reduce alert fatigue through risk-based approaches, and automate response workflows that enable analysts to work efficiently and at scale. The role is highly hands-on and collaborates closely with threat intelligence, threat hunting, and platform engineering teams.

Key Responsibilities

Detection Engineering

Design and implement detection use cases aligned to the MITRE ATT&CK framework
Assess detection coverage, identify gaps, and drive remediation roadmaps
Build, tune, and maintain correlation searches and alerts within enterprise SIEM platforms
Implement risk-based alerting methodologies to improve signal quality
Develop and maintain detections across on-prem and multi-cloud environments
Continuously refine detections based on SOC feedback and incident outcomes

Security Automation & Orchestration

Design and implement automated response playbooks using SOAR platforms
Integrate security tools to support automated investigation and response workflows
Develop scripts and automations (Python, PowerShell, Bash) to streamline SOC operations
Create reusable automation frameworks that scale across multiple use cases
Partner with engineering teams to ensure automation reliability and performance

SOC Architecture & Strategy

Define and contribute to a mature SOC operating model and technical architecture
Identify shortcomings in existing SOC capabilities and recommend improvements
Establish standards and best practices for detection engineering and response
Provide technical mentorship and guidance to SOC and platform engineers
Contribute to long-term SOC strategy and capability growth

Collaboration & Operations

Partner with threat intelligence and threat hunting teams to operationalize research
Work closely with SOC analysts to improve detection quality and workflows
Participate in incident response to validate and enhance detections and automation
Document detection logic, playbooks, and technical designs

Required Qualifications

5+ years of experience in a Security Operations Center environment
Strong hands-on experience with enterprise SIEM platforms (e.g., building detections, alerts, dashboards)
Proven detection engineering experience, including alert tuning and coverage analysis
Practical application of the MITRE ATT&CK framework
Experience building automated response workflows using SOAR platforms
Proficiency in scripting languages such as Python, PowerShell, or Bash
Experience monitoring and detecting threats in cloud environments
Strong analytical skills with the ability to define vision and drive SOC maturity

Preferred Qualifications

Hands-on experience with Splunk SOAR and/or behavioral analytics platforms
Risk-Based Alerting (RBA) implementation experience
Threat hunting background with applied detection engineering
CI/CD or infrastructure automation experience
Experience mentoring or leading detection engineering efforts
Relevant security certifications (GIAC, CISSP, or similar)

Role Scope & Growth

This is a senior individual contributor role with significant influence over detection strategy, automation, and SOC maturity. The position offers the opportunity to shape security operations, establish engineering standards, and grow into a technical leadership role as the SOC continues to expand.

Welcome to ConsultNet, a premier national provider of technology talent and solutions. Our expertise spans across project services, contract-to-hire, direct search, and managed services onshore, nearshore, and hybrid.

For over 25 years, we have connected thousands of consultants with meaningful roles through a personal, communication-driven approach, partnering with a diverse client base to build high-performing teams and create lasting impact.
Our comprehensive service offerings cover a wide range of technology and engineering positions across key markets nationwide. Learn more at .

We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: cxcnetut
Position Id: 26-00117
Posted 9 days ago

Company Info

About ConsultNet, LLC

ConsultNet is a technology and engineering staffing company that pairs skilled technical and business professionals from around the world with successful companies to tackle all kinds of technology-based business challenges. Using an approach that focuses on building deep, strategic relationships with both its business clients and a large network of technology professionals, ConsultNet serves customers in a wide range of industries, including aerospace, communications, education, finance, government, healthcare, technology, and many others.

ConsultNet recruiters and employees are motivated, flexible, and completely focused on providing outstanding personalized service. This elite team understands the needs of every client and has the business acumen and experience to deliver high-end technology and engineering solutions that perfectly meet customer needs.

The Company attracts top technology talent in a fiercely competitive environment by developing strong relationships with a diverse network of top consultants, providing them with outstanding opportunities, investing in their personal and professional growth, and offering them the flexibility and freedom to pursue a challenging, rewarding career path.

With a rapidly growing national presence and a reputation for providing exceptional service, ConsultNet has been contributing to the growth and success of its clients' businesses since 1996. No matter how big ConsultNet becomes, the organization's people, relationships, and outstanding service will always be the key ingredients it uses to help customers find the technology talent they need.

Why ConsultNet?
At ConsultNet, we're ready to help you get in on the ground floor of an innovative, cutting-edge startup company, team you up with a Fortune 500 powerhouse, or anything in between. Regardless of what types of opportunities interest you, we can always open new doors, create exciting new opportunities, and help you show off your talents and put your skills to the test.

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.