Title: Senior SOC Security Engineer – Application Security Focus
Location: hybrid to McLean, VA, Rockville, MD
Target Start Date: ASAP
Type: contract
Pay Rate: DOE
We are seeking a highly skilled Senior SOC Security Engineer with deep expertise in Application Security to join a dynamic cybersecurity team. This role blends real-time threat detection and response with proactive application security strategies to protect digital assets and infrastructure.
As a senior member of the SOC, you will lead incident response efforts, mentor junior analysts, and collaborate with development teams to embed security into the software development lifecycle (SDLC). You'll be instrumental in shaping the security posture across both operational and application layers.
Monitor, detect, and respond to security incidents using SIEM and EDR tools
Conduct deep-dive investigations into complex threats and vulnerabilities
Perform threat hunting and develop detection use cases for emerging attack vectors
Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines
Conduct code reviews and static/dynamic analysis to identify application vulnerabilities
Lead application threat modeling and risk assessments
Develop and maintain playbooks for incident response and application security testing
Mentor SOC analysts and contribute to continuous improvement of SOC processes
Stay current with threat intelligence, zero-days, and security trends
Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Systems, or a related technical field
Equivalent experience may be considered in lieu of formal education for exceptional candidates
5+ years of experience in SOC operations and incident response
Desired Certifications such as CISSP, CASE, OSCP, CSSLP, or GIAC
SIEM & EDR Tools: Proficiency with platforms like Splunk, Sentinel, QRadar, CrowdStrike
Application Security Tools: Experience with SAST, DAST, and SCA tools (e.g., Veracode, Burp Suite, SonarQube)
Secure Coding Practices: Deep understanding of OWASP Top 10, SANS 25, and remediation techniques
Cloud Security: Familiarity with AWS, Azure, or GCP security configurations and container security
Threat Modeling & Vulnerability Management: Ability to assess risks and guide mitigation strategies
Experience integrating security into CI/CD pipelines
Familiarity with DevSecOps principles
Strong analytical thinking and attention to detail
Excellent communication skills for cross-functional collaboration
Ability to mentor junior analysts and lead incident response efforts
Welcome to ConsultNet and the family of companies, Tekne, SaltClick, TechBridge, and OmniMedia. As a premier national provider of technology talent and solutions, our expertise spans across project services, contract-to-hire, direct placement, and managed services both onshore and nearshore.
Celebrating more than 25 years of partnership with a diverse client base, we've crafted rewarding opportunities for our consultants, fostering high-performing teams that deliver impactful results.
Over the last few years thousands of consultants have found their calling with us in roles that have made a meaningful impact on their lives, enhanced their career, challenged them, and propelled them towards achieving their personal and professional goals. At the ConsultNet family of companies, we believe effective communication is crucial in aligning the right job with your unique skills and professional aspirations. To us, it's all about the personal approach we take and the values we uphold.
Our comprehensive service offerings cover a wide range of technology positions across key markets nationwide. Client more at www.consultnet.com.
We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.