Sr. SOC Incident Response- THIRD SHIFT

Title: SOC Incident Response Engineer Location : 100% Remote Target Start Date : ASAP Type: contract Pay Rate: DOE We are seeking a highly experienced Senior SOC Security Engineer to strengthen and mature enterprise security operations capabilities. This role is responsible for advanced alert triage, incident response, threat hunting, cloud and network security, and continuous SOC optimization. The ideal candidate combines deep technical expertise with strong analytical, communication, and leadership skills to support a fast-paced and evolving cybersecurity environment.

Key Responsibilities

Security Operations & Incident Response

• Monitor, investigate, and respond to security incidents across enterprise environments using SIEM and EDR platforms
• Perform advanced alert triage, root cause analysis, and forensic investigations for complex threats and vulnerabilities
• Lead and coordinate incident response activities during critical security events
• Conduct proactive threat hunting and develop detection methodologies for emerging attack vectors
• Develop, maintain, and improve incident response playbooks, runbooks, and operational procedures
• Stay current on threat intelligence, zero-day vulnerabilities, attacker tactics, and evolving cybersecurity trends

SIEM, EDR & Detection Engineering

• Administer and optimize SIEM and EDR platforms such as Splunk, Microsoft Sentinel, QRadar, CrowdStrike, or similar tools
• Create and tune advanced detection rules, correlation searches, dashboards, and alerting logic
• Improve SOC visibility and detection coverage through continuous enhancement of monitoring capabilities
• Support automation and orchestration initiatives to improve response efficiency

Cloud & Network Security

• Support and secure cloud environments across AWS, Azure, and/or GCP
• Implement and maintain cloud-native security controls and monitoring solutions
• Assess and secure containerized environments including Docker and Kubernetes
• Analyze network architecture, traffic patterns, and security protocols to identify and mitigate risks
• Partner with infrastructure and engineering teams to strengthen enterprise security posture

Security Program Development

• Contribute to the evolution and maturity of SOC processes, standards, and operational capabilities
• Develop threat hunting frameworks, detection use cases, and security testing methodologies
• Support remediation planning and risk mitigation efforts across the organization
• Enhance operational efficiency through process optimization, automation, and tool improvements

Leadership & Collaboration

• Mentor junior SOC analysts and provide technical guidance across the security team
• Collaborate with DevOps, infrastructure, engineering, and IT teams on security initiatives and incident response
• Communicate technical findings, risks, and remediation recommendations to both technical and non-technical stakeholders
• Promote security awareness and best practices across the organization

Required Qualifications

Education

• Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Systems, or a related technical discipline
• Equivalent practical experience may be considered in lieu of formal education

Experience

• 7+ years of experience in Security Operations Center (SOC) environments and incident response
• Proven experience handling complex security investigations and advanced threat detection
• Hands-on expertise with cloud security, network security, and enterprise security operations

Technical Skills

• Strong experience with SIEM and EDR platforms including Splunk, Sentinel, QRadar, CrowdStrike, or equivalent technologies
• Advanced knowledge of incident response, threat hunting, and detection engineering
• Deep understanding of cloud security principles across AWS, Azure, and/or GCP
• Experience securing containerized and cloud-native environments (Docker, Kubernetes)
• Strong networking and security architecture knowledge
• Scripting and automation experience using Python, PowerShell, Bash, or similar languages
• Understanding of modern attack techniques, adversary tactics, and defensive security strategies

Professional Skills

• Strong analytical and problem-solving capabilities
• Excellent verbal and written communication skills
• Ability to perform effectively under pressure during high-severity incidents
• Strong collaboration and stakeholder management skills
• Demonstrated leadership, mentoring, and team development abilities

Preferred Certifications

• CISSP
• OSCP
• GIAC Certifications
• CASE
• CSSLP or equivalent cybersecurity certifications

Welcome to ConsultNet, a premier national provider of technology talent and solutions. Our expertise spans across project services, contract-to-hire, direct search, and managed services onshore, nearshore, and hybrid. For over 25 years, we have connected thousands of consultants with meaningful roles through a personal, communication-driven approach, partnering with a diverse client base to build high-performing teams and create lasting impact. Our comprehensive service offerings cover a wide range of technology and engineering positions across key markets nationwide. Learn more at www.consultnet.com . We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law. Apply tot his job Apply To this Job