SOC Engineer Lead

The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security.

Be a part of the Telos culture and see what sets us apart! Telos offers an excellent compensation package with benefits that include generous paid time off, medical, dental, vision, tuition reimbursement, and 401k. Our employees enjoy more than just a great work environment!

SOC Infrastructure Engineering

Design and implement scalable SOC infrastructure using AWS native services

Build and maintain automated security monitoring pipelines and data ingestion systems

Develop Infrastructure as Code (IaC) solutions for SOC tools and security services

Engineer high-availability, fault-tolerant security operations platforms

Optimize performance and cost of SOC infrastructure and tooling

Security Automation & Orchestration

Develop automated incident response workflows and security orchestration solutions

Build custom integrations between AWS security services and SOC platforms

Create automated threat detection and response capabilities using AWS Lambda and Step Functions

Implement Security Orchestration, Automation, and Response (SOAR) solutions

Design and build custom security tools and utilities for SOC operations

AWS Security Services Engineering

Architect and implement enterprise-wide AWS security monitoring solutions

Configure and optimize AWS GuardDuty, Security Hub, Config, and CloudTrail at scale

Build automated compliance monitoring and reporting systems

Engineer custom detection rules and analytics for AWS environments

Implement centralized logging and security event correlation across multiple AWS accounts

ServiceNow Platform Engineering

Design and implement complex ServiceNow Security Operations automations

Build custom ServiceNow applications and integrations with AWS services

Develop RESTful APIs and web services for ServiceNow platform integration

Create advanced reporting dashboards and analytics for security metrics

Engineer workflow automation for incident lifecycle management

Data Engineering & Analytics

Design and build security data lakes and analytics platforms using AWS services

Implement real-time and batch processing pipelines for security event data

Develop machine learning models for anomaly detection and threat hunting

Build custom analytics dashboards and visualization tools

Engineer data retention and archival solutions for compliance requirements

DevSecOps & CI/CD Integration

Implement security testing and validation in CI/CD pipelines

Build automated security scanning and vulnerability management workflows

Design secure deployment pipelines for SOC applications and infrastructure

Integrate security controls into development and deployment processes

Develop security as code practices and governance frameworks

Security Clearance

Must be able to obtain and maintain a U.S. Government security clearance

U.S. citizenship required for clearance eligibility

Education & Certifications

Bachelor's degree in Computer Science, Engineering, Information Security, or related field

AWS Certified Security - Specialty (required)

AWS Certified Solutions Architect - Professional or AWS Certified DevOps Engineer - Professional

ServiceNow Certified System Administrator (CSA) or Certified Application Developer (CAD)

One or more of: CISSP, GCIH, GSEC, CISSP-ISSEP, or equivalent security certifications

Experience

8-10 years of experience in cloud engineering, security engineering, or DevOps

4+ years hands-on experience with AWS services and cloud architecture

3+ years experience building security automation and orchestration solutions

3+ years experience with ServiceNow platform development and customization

Proven experience with large-scale system design and implementation

Technical Expertise

Expert-level knowledge of AWS services (Lambda, Step Functions, EventBridge, CloudFormation, CDK)

Advanced programming skills in Python, Go, or Java for security automation

Proficiency with Infrastructure as Code tools (Terraform, CloudFormation, CDK)

Experience with containerization and orchestration (Docker, Kubernetes, ECS, EKS)

Strong knowledge of networking, security protocols, and cloud security architecture

Experience with big data technologies (ElasticSearch, Splunk, AWS Analytics services)

Knowledge of CI/CD tools and practices (GitLab, Jenkins, AWS CodePipeline)

Engineering Competencies

Strong system design and architecture capabilities

Experience with microservices architecture and API development

Knowledge of database design and management (SQL and NoSQL)

Understanding of security frameworks and compliance requirements

Ability to optimize systems for performance, scalability, and cost

Experience with monitoring and observability tools (CloudWatch, Prometheus, Grafana)

Preferred Qualifications

Master's degree in relevant field

Current security clearance (Secret or above)

Experience with DHS cybersecurity policies and regulations (HIGHLY PREFERRED)

Additional AWS certifications (Machine Learning, Big Data, Advanced Networking)

ServiceNow Certified Implementation Specialist or Certified Technical Developer

Experience with machine learning and artificial intelligence for security applications

Knowledge of threat intelligence platforms and STIX/TAXII protocols

Previous experience in federal government or regulated industries

Experience with federal compliance frameworks (FedRAMP, FISMA, NIST 800-53)

Background in DevSecOps and security-focused software development

Advanced Technical Skills

Experience with serverless security architectures and event-driven systems

Knowledge of advanced AWS security services (Detective, Macie, Inspector)

Experience with security data science and behavioral analytics

Understanding of zero trust architecture principles and implementation

Knowledge of container and Kubernetes security

Experience with security testing automation and vulnerability management

The successful candidate must meet eligibility requirements to access sensitive information, which requires US citizenship.

Telos maintains a drug-free workplace and will conduct drug testing on all applicants who have accepted an offer of employment

Telos Corporation participates in the E-Verify program. Therefore, any employment with Telos will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. Telos offers excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future.

Telos Corporation and its subsidiaries are committed to equal opportunity for all, without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. Telos Corporation will make reasonable accommodations for known physical or mental limitations of otherwise qualified employees and applicants with disabilities unless the accommodation would impose an undue hardship on the operation of our business. If you are interested in applying for an employment opportunity and feel you need a reasonable accommodation pursuant to the ADA, please contact us at 1-800-283-1911. If you require relay service assistance, please click on the following link to review information on your state's relayservice:https://www.fcc.gov/accessibility

Telos Corporation is an EEO/AA employer.