ConsultNet Technology Services and Solutions ยท 1 day ago
Sr. SOC Engineer
Rockville, MD
Full-time
Onsite
Senior Level
5+ years expConsultNet Technology Services and Solutions is a premier national provider of technology talent and solutions. They are seeking a highly skilled Senior SOC Security Engineer to join their dynamic cybersecurity team, focusing on application security, incident response, and threat detection.
Human ResourcesInformation TechnologyStaffing Agency
Responsibilities
Design and implement security controls for third-party software dependencies and open-source components
Monitor, detect, investigate, and respond to security incidents
Develop and execute vulnerability management strategies with emphasis on exploitability and reachability analysis
Conduct deep-dive investigations into software supply chain security (SSCS) threats, including compromised dependencies and malicious packages
Perform proactive threat hunting for emerging attack vectors
Assess and mitigate risks associated with software dependencies across enterprise systems and applications
Lead incident response efforts related to identity-based attacks and supply chain compromises
Develop detection use cases and threat models specific to SSCS attack vectors
Establish security practices for evaluating, vetting, and approving third-party packages and libraries
Collaborate with DevOps and engineering teams to integrate security controls into CI/CD pipelines
Analyze third-party vulnerabilities (CVEs) in an enterprise context and partner with engineering teams on remediation efforts
Qualification
Required
Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Systems, or a related technical field
Equivalent professional experience may be considered in lieu of formal education
5+ years of experience in SOC operations, security monitoring, and incident response
Desired certifications include CISSP, CASE, OSCP, CSSLP, GIAC, or equivalent
Experience with SIEM and EDR tools such as Splunk, Sentinel, QRadar, CrowdStrike, or similar
Strong understanding of software supply chain security attack vectors (e.g., dependency confusion, compromised packages, malicious commits, backdoors)
In-depth knowledge of package managers (npm, PyPI, Maven, NuGet, etc.) and associated security risks
Hands-on experience with artifact repository management tools
Experience with application security tools: SAST, DAST, and SCA tools (e.g., Veracode, Burp Suite, SonarQube or equivalents)
Deep understanding of OWASP Top 10, SANS Top 25, and remediation techniques
Familiarity with AWS, Azure, or GCP security configurations and container security
Proficiency with software composition analysis (SCA) tools and vulnerability reachability concepts
Experience integrating security controls into CI/CD pipelines
Familiarity with DevSecOps principles and practices
Strong analytical and problem-solving skills with attention to detail
Excellent written and verbal communication skills for cross-functional collaboration
Proven ability to mentor junior analysts and lead incident response initiatives
Company
ConsultNet Technology Services and Solutions
ConsultNet is a talent solutions company that helps businesses solve complex challenges by integrating talent, technology, and scalable delivery models.
201-500 employees
H1B Sponsorship
ConsultNet Technology Services and Solutions has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (6)
2024 (6)
2023 (7)
2022 (6)
2021 (6)
2020 (9)
Funding
Current Stage
Growth StageLeadership Team
Marnie Nuttall
Chief Financial Officer
Company data provided by crunchbase