1

Security Operations Center Soc Engineer Jobs (NOW HIRING)

... Security Operations Center in Dallas, TX. We are looking for candidates who can provide a ... SOC Engineer Mandatory Skills -Appropriate candidates should possess at least 5-7 years' experience ...

next page

Showing results 1-20

Security Operations Center Soc Engineer information

See salary details

$33.5K

$137.7K

$174K

How much do security operations center soc engineer jobs pay per year?

As of Jul 15, 2026, the average yearly pay for security operations center soc engineer in the United States is $137,745.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $173,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Security Operations Center (SOC) Engineer, and why are they important?

To thrive as a Security Operations Center (SOC) Engineer, you need strong analytical skills, a solid understanding of network security principles, and typically a degree in computer science or cybersecurity. Familiarity with SIEM tools (like Splunk or QRadar), intrusion detection systems, and relevant certifications such as CompTIA Security+ or CISSP are highly valued. Excellent problem-solving abilities, attention to detail, and effective communication make someone stand out in this role. These skills and qualities are crucial for detecting, analyzing, and responding to security threats promptly, ensuring organizational data and infrastructure remain secure.

What are some common challenges faced by a Security Operations Center (SOC) Engineer, and how can they be addressed?

SOC Engineers often face challenges such as managing a high volume of security alerts, staying updated with evolving threat landscapes, and ensuring effective communication across IT and security teams. To address these, it's important to leverage automation tools to filter and prioritize alerts, participate in ongoing training to remain current with new threats, and foster strong collaboration with other departments for coordinated incident response. Developing clear processes and documentation also helps mitigate confusion during high-pressure incidents.

What is the difference between Security Operations Center Soc Engineer vs Security Analyst?

AspectSecurity Operations Center Soc EngineerSecurity Analyst
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, GIAC Security Essentials (GSEC)
Work EnvironmentSecurity operations center, monitoring and responding to threatsAnalyzing security data, assessing vulnerabilities
Employer & IndustryCybersecurity firms, large enterprises, government agenciesOrganizations with security teams, IT departments

While both roles focus on cybersecurity, Security Operations Center Soc Engineers primarily design, implement, and respond to security threats within a SOC environment. Security Analysts analyze security data and identify vulnerabilities. SOC Engineers often have more technical responsibilities related to system configuration and incident response, whereas Security Analysts focus on monitoring and reporting. Both roles are essential for a comprehensive security strategy.

What does a Security Operations Center (SOC) Engineer do?

A Security Operations Center (SOC) Engineer is responsible for monitoring, detecting, and responding to cybersecurity threats within an organization's IT infrastructure. They use specialized tools and techniques to analyze security alerts, investigate incidents, and coordinate responses to minimize risk. SOC Engineers also help maintain and improve security systems, conduct vulnerability assessments, and implement security best practices to protect sensitive data and resources. Their role is critical in ensuring the organization's information security posture remains strong against evolving threats.
More about Security Operations Center Soc Engineer jobs
What cities are hiring for Security Operations Center Soc Engineer jobs? Cities with the most Security Operations Center Soc Engineer job openings:
Infographic showing various Security Operations Center Soc Engineer job openings in the United States as of July 2026, with employment types broken down into 83% Full Time, and 17% Part Time. Highlights an 89% In-person, and 11% Remote job distribution, with an average salary of $137,745 per year, or $66.2 per hour.
Security Operations Center Engineer III

Security Operations Center Engineer III

MartinFed

Arlington, VA

Full-time

Posted 27 days ago


Job description

COMPANY OVERVIEW

Founded in 2007 in Huntsville, AL, MartinFed provides the U.S. government with customer-focused, performance-based solutions using technology and an empowered workforce as an engine to drive its customers' missions. Our goal is to attract the best and brightest within their field.

We invest in our people because they are our greatest asset. They cultivate our purpose, embody and reflect our core values, and define our culture. MartinFed's core values that set us apart are the following:

  • Be Driven - We are fueled by the hunger to learn more and do more.
  • Be Curious - We engage in continuous improvement - never accepting the status quo.
  • Be Humble - We seek honest feedback to strengthen our relationships.
  • Pursue Excellence - We strive to achieve extraordinary results and do not settle for mediocrity.

Strive for excellence and consider joining our growing team today!

Please note: this position is contingent upon contract award.

JOB OVERVIEW:

MartinFed is seeking a highly experienced Security Operations Center (SOC) Engineer III to provide advanced cybersecurity monitoring, detection, analysis, and incident response support within a complex enterprise environment. The ideal candidate will serve as a senior technical resource responsible for engineering, optimizing, and maintaining security operations platforms while leading efforts to detect, investigate, and mitigate cybersecurity threats.

This role requires extensive experience in Security Operations Center (SOC) environments, security information and event management (SIEM) platforms, log aggregation, threat hunting, incident response, and security automation. The SOC Engineer III will collaborate with cybersecurity teams, system administrators, network engineers, and organizational leadership to strengthen the organization's security posture and ensure continuous monitoring of critical systems and infrastructure.

ESSENTIAL DUTIES AND RESPONSIBILITIES:
  • Lead security monitoring operations utilizing SIEM technologies, including Splunk and Cribl platforms.
  • Design, implement, configure, and maintain enterprise security monitoring and logging solutions.
  • Perform advanced threat detection, threat hunting, and incident analysis activities across enterprise networks and cloud environments.
  • Investigate security alerts, incidents, and anomalies to determine root cause, impact, and remediation actions.
  • Develop and maintain security use cases, correlation searches, dashboards, reports, and automated workflows.
  • Engineer and optimize log collection, normalization, enrichment, and retention strategies.
  • Support the deployment, administration, and optimization of Splunk Enterprise, Splunk Cloud, and Cribl environments.
  • Develop security content to improve detection capabilities for emerging cyber threats and adversarial tactics.
  • Lead incident response activities and coordinate containment, eradication, recovery, and lessons learned efforts.
  • Conduct security assessments and identify opportunities to improve monitoring, visibility, and operational effectiveness.
  • Collaborate with cloud, network, and systems engineering teams to integrate security controls and monitoring solutions.
  • Develop operational procedures, technical documentation, and standard operating procedures (SOPs).
  • Provide technical leadership and mentorship to junior SOC analysts and engineers.
  • Generate executive-level reports, metrics, and briefings regarding security incidents, trends, and organizational risk.
  • Support compliance initiatives, audits, and security assessments in accordance with federal cybersecurity requirements.
  • Stay current on emerging threats, attack techniques, and cybersecurity technologies to enhance defensive capabilities.

REQUIRED QUALIFICATIONS:

  • United States Citizen with a DoD Secret clearance.
  • Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, Information Systems, or a closely related technical field. Relevant experience may be considered in lieu of degree requirements.
  • Minimum of 10 years of experience performing IT Security Operations in enterprise or government environments.
  • Demonstrated experience supporting Security Operations Centers (SOCs), Cyber Defense Operations, or Security Monitoring Programs.
  • Advanced experience administering, engineering, and supporting Splunk Enterprise and/or Splunk Cloud environments.
  • Experience implementing and maintaining log management, SIEM, and security analytics platforms.
  • Strong knowledge of incident response, threat hunting, digital forensics, malware analysis, and vulnerability management.
  • Experience with cloud security monitoring and AWS security services.
  • Knowledge of cybersecurity frameworks and standards, including:
    • NIST Cybersecurity Framework (CSF)
    • NIST 800 Series
    • Risk Management Framework (RMF)
    • FISMA
    • Security Technical Implementation Guides (STIGs)
    • MITRE ATT&CK Framework
  • Strong understanding of network security, endpoint security, identity and access management, and security architecture.
  • Experience developing security dashboards, correlation searches, alerts, reports, and automation workflows.
  • Excellent analytical, troubleshooting, communication, and leadership skills.

PHYSICAL REQUIREMENTS & ENVIRONMENTAL CONDITIONS

  • Inside office environment.
  • Working on a computer for long periods of time.
  • May involve long period of sitting at a desk.
  • The work environment is fast-paced and sometimes involves extreme deadline pressures.

OTHER DUTIES

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

MartinFed is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable federal, state or local law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. In addition to federal law requirements, MartinFed complies with all applicable state and local laws governing nondiscrimination in all locations.

If you are a qualified individual with a disability or disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access MartinFed's current openings as a result of your disability. You can request reasonable accommodations by calling 855.212.1810. Thank you for your interest in MartinFed.


Please Note: All positions at MartinFed are contingent upon passing a background check prior to a start date and are subject to random drug screenings during the employment period. In addition, MartinFed is an E-Verify employer.