SOC Engineer

Talascend is currently seeking a Security Operations Center (SOC) Engineer for a remote, W-2 contract to possible direct-hire opportunity with our client. Clearance

• US Citizenship
• Ability to gain a Pubic Trust Security Clearance
• Current possession of a PT Security Clearance is preferred

Overview

This role focuses on engineering SOC data feed solutions, implementing SOAR capabilities, and ensuring feed health through cross-team collaboration. The ideal candidate will have strong cybersecurity expertise, including network security, SIEM, incident response, and threat detection. Shift Remote (DC area preferred) (Must be willing to come in once a quarter for a team meeting)

Responsibilities

• Maintain and optimize a Microsoft Sentinel SIEM/SOAR solution in alignment with client requirements, industry best practices, and federal compliance mandates.
• Configure and manage log/data feeds from diverse sources (e.g., Fluent Bit, Windows Events, M365, cloud services, endpoint/security platforms).
• Develop and refine log parsing rules using Regex, DCRs, and custom transformations to ensure accurate and usable data in Sentinel.
• Engineer automation and orchestration solutions using Microsoft Logic Apps, Azure Functions, and PowerShell/Python scripts to improve SOC efficiency and incident response.
• Build, tune, and optimize analytic rules, UEBA, dashboards, and reports to improve detection and response coverage.
• Partner with cross-functional teams (network, endpoint, cloud, IT ops) to integrate new data sources and deliver actionable SOC capabilities.
• Develop and maintain clear documentation of SOC architecture, log source onboarding, and automation playbooks; provide training for SOC analysts on new tools and processes.
• Conduct gap analyses of existing SOC capabilities, recommend improvements, and contribute to SOC process maturity.
• Provide Tier 3 support and assist with complex investigations when required.

Qualifications

• A Bachelor's degree or minimum of 4 years prior relevant experience.
• 5+ years of progressive cybersecurity/SOC experience (engineering and operations).
• U.S. Citizen with ability to obtain Public Trust clearance.
• 2–5 years of experience in network defense, SOC engineering, or cybersecurity operations.
• Hands-on experience with Microsoft Sentinel, including log onboarding, rule development, and automation.
• Proficiency with log parsing and normalization (Regex, Fluent Bit, DCRs, KQL).
• Strong scripting skills in PowerShell and/or Python for automation and data handling.
• Experience configuring and maintaining data feeds for SOC visibility (cloud, endpoint, network, and on-prem).
• Familiarity with incident response concepts, threat detection engineering, and SOAR workflows.
• Excellent written and verbal communication skills with ability to work across technical and non-technical teams.

Preferred Requirements

• Knowledge of federal cybersecurity mandates (M-21-31, NIST Cybersecurity Framework, CISA Incident/Vulnerability Playbooks, BOD 22-01).
• Experience with Microsoft Logic Apps, Azure Functions, or other SOAR development platforms.
• Experience with UEBA configuration to enhance anomaly detection.
• Background in AI/ML frameworks for cyber analytics.
• Experience building SOC metrics, dashboards, and reporting for operational visibility.
• Familiarity with M365, Azure security tools, ServiceNow workflows, and CISA CDM tools.
• Relevant certifications such as CISSP, CISM, Microsoft Security Operations Analyst (SC-200), or Azure Security Engineer (AZ-500).

We thank all applicants for their interest. However, only those qualified individuals who closely meet the qualifications of the position will be contacted. The details of the position are only a summary, other duties may be assigned as necessary. Background Check and Drug Screen may be required. Pay range is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. Talascend also offers a variety of benefits including: health and disability insurance, 401(k), EAP, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, plan requirements, schedule type, and client work site mandates. Talascend is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status. Apply tot his job Apply To this Job