Sr SOC Engineer

Jobgether · US

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Sr SOC Engineer based in the United States.

This role is a hands-on cybersecurity operations position focused on protecting and strengthening cloud environments across AWS and Azure.
You will be at the center of detecting, investigating, and responding to security threats in real time.
The position combines incident response, cloud security engineering, and operational automation to reduce risk and improve resilience.
You will work closely with detection engineering, cloud infrastructure, and platform teams to improve security controls and alert quality.
The environment is fast-paced, highly collaborative, and centered on continuous improvement of security operations.
You will play a key role in ensuring threats are quickly contained, investigated, and remediated across complex cloud systems.
This is a highly technical role with strong exposure to modern cloud security tooling and threat response practices.

Accountabilities:

  • Monitor, investigate, and respond to security alerts across cloud, endpoint, network, and identity systems, validating threats and executing appropriate response actions.
  • Perform hands-on mitigation and remediation in AWS and Azure environments, including access control changes, resource isolation, configuration updates, and policy enforcement.
  • Tune, build, and optimize detection rules across SIEM, EDR, and cloud-native security tools to improve alert quality and reduce false positives.
  • Lead and support incident response activities, including triage, containment, eradication, recovery, and post-incident analysis.
  • Conduct root cause analysis for security incidents and near-misses, ensuring corrective actions are implemented to prevent recurrence.
  • Develop and maintain runbooks, playbooks, and operational documentation to standardize response procedures.
  • Support automation initiatives using scripting, APIs, and cloud-native tools to streamline response workflows and reduce MTTR.
  • Collaborate with cloud, infrastructure, and application teams to remediate vulnerabilities, improve system hardening, and reduce attack surface.
  • Perform threat hunting using telemetry, logs, and adversary TTPs to identify undetected malicious activity.
  • Support vulnerability management efforts, including validation, prioritization, and remediation tracking.
  • Monitor cloud environments for misconfigurations, drift, and control failures, executing corrective actions as needed.
  • Participate in security exercises, tabletop simulations, and continuous improvement initiatives.

    • Requirements:

    • Bachelor’s degree in Cybersecurity, Computer Science, or a related field, or equivalent practical experience.
    • 5+ years of experience in security operations, incident response, or a SOC environment at a senior analyst level or equivalent.
    • Strong hands-on experience with AWS and Azure security services, including identity, networking, and cloud-native security controls.
    • Solid understanding of SIEM, EDR, DLP, email security, and endpoint security platforms.
    • Experience with scripting and automation tools such as Python, PowerShell, Terraform, or CloudFormation.
    • Proven ability to execute incident response and remediation actions using cloud consoles, APIs, and automation frameworks.
    • Strong knowledge of threat hunting methodologies and security operations best practices.
    • Familiarity with security frameworks such as NIST and CIS.
    • Relevant security or cloud certifications (e.g., Security+, GCIH, GCIA, AZ-500, SC-200, AWS Security Specialty) strongly preferred.
    • Strong analytical thinking, problem-solving skills, and ability to operate under pressure.
    • Excellent communication skills with the ability to clearly document and explain technical findings.

      • Benefits:

      • Competitive annual salary range: USD $110,000 – $140,000, based on experience and qualifications.
      • Performance-based bonus eligibility depending on role and company guidelines.
      • Comprehensive benefits package including medical, dental, vision, life, and disability insurance.
      • 401(k) retirement savings plan.
      • Paid time off and paid holidays.
      • Remote work flexibility within the United States.
      • Opportunity to work on modern cloud security environments and advanced threat response initiatives.
      • Exposure to automation, detection engineering, and enterprise-scale security operations.

Security pay context

Based on 1,634 disclosed Security salaries on RoleSuite, the role pays a median of $142K/year, with most offers between $114K and $180K (10th–90th percentile: $93K–$216K).

This posting lists $110K–$140K, below the $142K market median.

See the full Security salary breakdown →
Apply →

Other roles at Jobgether

More Security roles