Cloud Security Operations (SecOps) Engineer

Application

To Apply for this Job Click Here

About

Always Connecting, Always Evolving.

TECHEAD is seeking qualified applicants for the following Direct Hire position – Cloud Security Operations (SecOps) Engineer – Arlington, VA – (JOB‑22044). If you are looking for a new opportunity and this position looks to be a fit, please apply to see the TECHEAD difference that has made us successful for 30+ years!

You can find more about our team and values by checking us out at TECHEAD.com or on Glassdoor.

Mission

We are building our foundational U.S. engineering team in Arlington, VA and we need a defender. As an early member of this team, you won’t just be designing architecture—you will be the primary line of defense against external threats to our internal and cloud infrastructure.

This role is designed for a hands‑on security practitioner with a deep background in SOC Operations and Incident Response. You will bridge the gap between engineering and real‑time security monitoring, ensuring that every piece of code we deploy is monitored, every log is analyzed, and every threat is neutralized.

Responsibilities (Day‑to‑Day)

• Incident Response & Threat Hunting – Serve as the primary responder for security incidents. Perform deep‑dive forensic analysis on cloud‑native services (containers, serverless) and internal infrastructure to detect, contain, and remediate threats.
• SIEM Management & Monitoring – Take full ownership of our Splunk/Elastic (ELK) stack. Build dashboards, write detection logic, and tune alerts to filter out the noise and catch sophisticated external actors.
• SOC Excellence – Act as a Tier 2/3 escalation point for security events. Responsible for the end‑to‑end lifecycle of a threat—from initial detection in AWS CloudTrail or Azure Monitor to final root cause investigation.
• Vulnerability & Surface Management – Proactively identify “weak spots” in our internal and cloud posture. Perform regular scans (Snyk, Wiz) and penetration testing to ensure our external attack surface is minimized.
• DevSecOps & Automation – “Automate the defense.” Use Python or Bash to script automated responses to common alerts and use Terraform/CloudFormation to ensure security controls (Firewalls, IAM, Encryption) are baked into our IaC.
• Zero Trust Advocacy – Design and enforce rigorous IAM and RBAC policies, ensuring that our internal infrastructure remains secure against lateral movement.

Requirements (You Should Apply If You Have)

• Clearance – Ability to obtain a Top Secret Clearance.
• SOC Mindset – 3–5+ years in Cybersecurity, with at least 2+ years of high‑level SOC (Tier 2/3) or Incident Response experience.
• SIEM Mastery – Hands‑on proficiency with Splunk, Elastic Stack (ELK), or Sentinel. Comfortable building queries and managing log ingestion.
• Cloud Warfare – Practical experience defending AWS, Azure, or GCP environments using native tools (GuardDuty, Security Hub, Defender).
• Infrastructure as Code (IaC) – Familiarity with Terraform, Ansible, or CloudFormation to deploy security guardrails.
• Scripting – Ability to write Python, Bash, or PowerShell scripts to automate repetitive security tasks.
• Networking Depth – “Packet‑level” understanding of TCP/IP, VPNs, DNS, and TLS. Able to read a PCAP and identify malicious traffic.

Nice to Have

• Certifications – CISSP, GCIA, GCIH, CCSP, or AWS Certified Security – Specialty.
• Education – Bachelor’s degree in Computer Science, Cyber Security, or equivalent experience.
• Framework Knowledge – Familiarity with NIST 800‑53, FedRAMP, or CMMC.
• Bonus – Experience in big tech or startup environments.

Equal Opportunity Statement

TECHEAD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

Company Information

For more information on TECHEAD please visit www.techead.com.

No second parties will be accepted.