SOC Engineer

Posted:
12/8/2024, 11:56:30 AM

Location(s):
Virginia, United States ⋅ Sterling, Virginia, United States

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
IT & Security

Core one is seeking a SOC Engineer to join our growing Technical Solutions team. The SOC Engineer will be responsible for the standup of a new SOC capability, selection and deployment of effective and robust threat analysis tool suite and workflow. This individual would be expected to actively participate in SOC solution design and implementation and see it from concept to operation.

The ideal candidate is someone looking to make immediate mission impacts and work in a startup like culture. By joining us, you will be solving some of the most interesting and challenging problems for our customers. You will work get to work daily with a growing and innovative team with extensive entrepreneurial experience. This position will offer high visibility within the company and to our customers delivering game changing solutions for mission.

Responsibilities:

  • Design and stand-up a fully operational Security Operations Center (SOC), including monitoring and analysis, risk assessment, security controls, and policies and procedures.
  • Work with SOC analysts to develop and implement Incident Response (IR) SOPs and assess potential mission impacts.
  • Gather and present security metrics to program leadership to discuss trends and make recommendations on the security posture of the environment.
  • Select multiple analytic tools, databases, and techniques to maximize most effective threat signals.
  • Assist with maintaining and enhancing the current security infrastructure.
  • Assist with network security evaluations and enhancements.

Minimum Requirements:

  • An active TS level clearance or higher.
  • At least 2 years’ experience working in security operations room/centers.
  • Demonstrated experience engineering a SOC from the ground up.
  • Bachelor’s degree and/or 5+ years’ relevant experience in lieu of education.
  • 5+ years’ hands-on experience in operational using SEIM, firewall, IDS/IPS, proxies, and/or virtualization tools in support of detection, response, mitigation, and/or reporting of cyber threats affecting systems and networks.
  • Strong understanding of security principles such as attack frameworks, threat landscapes, attacker TTPs, etc.
  • US Citizenship is required for this position

Desired Skills:

  • Certifications (i.e. CSA, CIH, CTIA).
  • SANS Coursework (i.e. SEC450, SEC511, MGT551)

About Core One 
Our mission is to be at the forefront of devising analytical, operational and technical solutions to our Nation's most complex national security challenges.  In order to achieve our mission, Core One values people first and is comprised of outstanding professionals from the national security community.  Because Core One is committed to seeking top talent, we offer competitive compensation and benefits packages. In addition, Core One is a team-oriented, dynamic and growing company that values exceptional performance.

Core One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, or protected veteran status and will not be discriminated against on the basis of disability.