About the role

Senior Cybersecurity Engineer providing technical expertise in cybersecurity operations within federal and private sectors. Leading SOC operations, overseeing cybersecurity strategies, and collaborating with key stakeholders.

Responsibilities

Lead Cybersecurity Operations:
Direct day-to-day SOC operations, including threat detection, incident response, and continuous monitoring activities.
Manage, mentor, and guide local and remote cybersecurity analysts and engineers.
Serve as the escalation point for high-priority incidents and complex security events.
Technical Oversight:
Design, implement, and optimize security infrastructure and tools, including Firewalls, VPNs, IDS/IPS, SIEM, EDR, NDR, A/V, Email and Web Content Filtering, and Virtualization technologies.
Ensure integration and interoperability between systems to enable centralized monitoring and response.
Develop and maintain automation scripts, dashboards, and playbooks to streamline threat detection and response processes.
Leadership & Collaboration:
Provide authoritative cybersecurity guidance to senior executives, technical leads, and federal stakeholders.
Foster collaboration between operations, architecture, and compliance teams to align operational efforts with policy objectives.
Communicate operational risks, trends, and remediation progress to leadership in clear, actionable terms.
Process & Continuous Improvement:
Drive the implementation of federal and NIST-based cybersecurity frameworks (NIST SP 800-53, 800-61, 800-137, etc.).
Establish metrics, reporting standards, and best practices for SOC performance and cyber defense maturity.
Champion the integration of AI, automation, and orchestration tools to improve SOC efficiency and resilience.

Bachelor's degree in Computer Science or closely related discipline is required
8+ years’ experience implementing, tuning, maintaining and operating security operations capabilities such as Firewalls, VPN, IDS/IPS, SIEM, EDR, NDR, A/V, Email Content Filtering, Web Content Filtering, virtual technologies, etc.
5+ years’ experience with coding and scripting languages (i.e., JSON, Java, JavaScript, Python, SQL, PowerShell, PHP, C, C++, etc.
Proven experience managing and/or leading successful local and remote teams in an operational environment.
Proven experience and the ability to interact authoritatively with a diverse group of senior executives, managers, and subject matter authorities.
Strong analytical, problem solving, organization, time management, and interpersonal skills as well as verbal and written communication skills.
Strong hands on experience with Microsoft Security Suite (Defender, Sentinel, Security Center)
CISSP, CEH, or similar level certification
Must be a US Citizen and able to obtain a Public Trust Clearance
**Preferred Qualifications**
Public Trust or higher clearance
AWS Security Hub, CloudTrail and Cloudwatch experience.