×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Senior SOC Engineer - Remote; Posted

Remote / Online - Candidates ideally in
Hialeah, Miami-Dade County, Florida, 33002, USA
Listing for: EmergencyMD
Remote/Work from Home position
Listed on 2026-06-02
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below
Position: Senior SOC Engineer - Remote (USA) Posted on Feb 16 / 2026

About us

At Echelon Risk + Cyber, we believe in defending basic human rights to security and privacy. We seek a highly skilled and hands‑on Security Operations Technical Lead to join our dynamic team at Echelon Risk + Cyber, a leading cybersecurity consulting firm. Our next team member will be ready to roll up their sleeves and identify opportunities for our clients and for Echelon internally with unquestioned integrity.

This team member will be passionate about cybersecurity and ready to use their knowledge to be an Entrepreneurial Problem Solver and work alongside their Echelon team members to build creative solutions.

As the Security Operations Technical Lead
, you will build and mature our SOC capabilities within our MSSP practice. The ideal candidate brings 7–10 years of MSSP experience (with at least 5 years on a SOC team
) and a strong security engineering background across EDR/MDR, SIEM, Microsoft 365 security, and email security
. In this role, you'll guide day‑to‑day SOC operations, detection engineering, and incident response, while remaining primarily hands‑on
.

At Echelon, you will have the opportunity to engage with clients, business partners and systems that are at the cutting edge of technology. We allow our employees to build from the ground up and make an impact across the organization. We look for driven and proactive people that are eager to contribute to a distinct and thriving Cybersecurity services organization, that can adapt to a rapid and changing environment.

This is a remote position from anywhere in the USA.

What You Will Do
  • SOC leadership & maturity (no hiring duties):
    • Establish and refine SOC processes (tiering, shift coverage, escalation paths, QA, SLAs/OLAs).
    • Drive runbook discipline, training plans, and continuous improvement for service quality.
    • Own SOC KPIs (MTTD/MTTR, detection efficacy, false‑positive rate, case aging, CSAT/NPS).
  • Detection & response (hands‑on):
    • Build and tune detections in SIEM/XDR; develop correlation rules, parsers, and dashboards.
    • Lead investigations and major incident end‑to‑end; conduct post‑incident reviews and reporting.
    • Perform proactive threat hunting aligned to MITRE ATT&CK and emerging TTPs.
  • Tooling & platform engineering:
    • Deploy, integrate, and operate EDR/MDR (Crowd Strike, Sentinel One,
      Blackpoint
      ),
      Microsoft 365/Windows Defender
      , SIEM, SOAR, email security, vulnerability scanners, and NSM tools.
    • Engineer log onboarding/normalization across cloud (AWS, Azure,
      M365
      , GCP), network, endpoint, identity, and SaaS sources.
    • Build automation/orchestration playbooks to reduce MTTD/MTTR and analyst toil.
  • Service delivery & client engagement:
    • Serve as technical point of contact for customers; present posture reviews and improvement plans.
    • Define and meet service SLAs; contribute to SOWs, service catalogs, and onboarding playbooks.
    • Coordinate with customer IT/CISO teams, vendors, and legal/compliance during incidents.
  • Risk, compliance & continuous improvement
    • Map detections, controls, and reporting to frameworks/standards (NIST CSF/800‑53, CIS Controls, SOC 2, ISO 27001).
    • Drive vulnerability and exposure management with risk‑based prioritization.
    • Run tabletop exercises, purple‑team activities, and lessons learned.
Your knowledge, skills, and abilities
  • Deep knowledge of SOC operations (triage, incident lifecycle, evidence handling, documentation).
  • Strong grasp of Windows/
    * nix/AD/
    M365
    , identity security (SSO/MFA), network protocols, and cloud telemetry.
  • Expertise in detection engineering and query languages (SPL,
    KQL
    , Elastic DSL, AQL).
  • Familiarity with adversary emulation and frameworks (MITRE ATT&CK, D3

    FEND, CIS Controls).
  • Understanding of email security (phishing, BEC), vulnerability scanning/patching, and network security monitoring (IDS/IPS, PCAP).
  • Proficiency with SOAR concepts and playbook design (enrichment, containment, ticketing).
  • Scripting/automation (Power Shell, Python, or equivalent) for enrichment, triage, and response.
  • Clear written/verbal communication for executive briefings and technical reports.
  • Applicants must have authorization to work in the United States without current or future visa sponsorship.
Specific Qualifications
  • Experience:

    7–10 years in…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search