Security Operations Engineer

The Link
Washington, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Washington, United States of America

Tech stack

Microsoft Windows
Azure
Cloud Computing Security
Computer Security
Computer Networks
Intrusion Detection Systems
Virtual Private Networks (VPN)
Python
Powershell
Security Information and Event Management
Software Engineering
Scripting (Bash/Python/Go/Ruby)
HybridCloud
Firewalls (Computer Science)
Cybercrime
Hardware Infrastructure
Security Orchestration, Automation & Response
Vulnerability Analysis

Job description

  • Lead the design, implementation, and continuous improvement of security operations capabilities

  • Perform advanced threat hunting, vulnerability analysis, and incident response activities

  • Engineer and maintain security platforms including SIEM, SOAR, EDR, and NDR tools

  • Monitor and analyze security events across multiple systems to identify risks and anomalies

  • Develop automated response and orchestration workflows to improve operational efficiency

  • Conduct security assessments aligned with federal cybersecurity standards and best practices

  • Collaborate with cross-functional teams to integrate security into infrastructure and application design

  • Manage and enhance cloud security configurations and enterprise security controls

  • Develop and execute incident response plans, procedures, and playbooks

  • Produce detailed reports, metrics, and risk assessments for leadership

  • Maintain comprehensive documentation including SOPs, policies, and architecture diagrams TECHNICAL ENVIRONMENT

  • Languages: Scripting (PowerShell, Python preferred)

  • Tools: SIEM, SOAR, EDR, NDR platforms, Log management and monitoring tools

  • Platforms: Microsoft Azure, Microsoft 365, Hybrid cloud and on-premises infrastructure

  • Frameworks: NIST RMF, FISMA, CISA security guidelines

Requirements

  • Minimum of six (6) years of progressive cybersecurity experience in enterprise or public sector environments

  • Hands-on experience supporting security operations in hybrid environments (cloud and on-premises)

  • Strong expertise with Microsoft Azure, Microsoft 365, and identity/security controls (e.g., Entra ID)

  • Experience implementing and managing enterprise security tools (SIEM, SOAR, EDR, NDR, log management)

  • Deep understanding of networking concepts including firewalls, VPNs, IDS/IPS

  • Extensive knowledge of cybersecurity frameworks such as NIST RMF, FISMA, and

  • CISA guidance

  • Proven experience leading incident response and threat mitigation efforts

  • Ability to obtain and maintain a Public Trust clearance PREFERRED QUALIFICATIONS

  • CISSP certification (highly preferred)

  • Microsoft Certified: Azure Security Engineer Associate

  • GIAC certifications (GCIA, GCIH) or Certified Ethical Hacker (CEH)

  • Experience developing automated security workflows and orchestration processes

  • Experience working in highly regulated environments Link Technologies is an equal opportunity employer. All qualified applicants will receive consideration for employment without discrimination based on race, color, religion, sex, gender identity/expression, sexual orientation, national origin, protected veteran status, disability, or any other factors protected by law.

Apply for this position