Senior SOC Engineer

CTS delivers comprehensive IT solutions to meet the unique demands of mission-driven organizations. We have deep expertise in supporting nonprofits and educational institutions, however our team is equipped to handle the complexities of IT across a variety of sectors. We're committed to making technology work seamlessly, so our clients can focus on making a difference, regardless of their industry.

At CTS, we believe in building a company culture that fosters growth, collaboration, and innovation. By joining our team, you will not only help empower businesses with cutting-edge IT solutions but also build a rewarding career in a dynamic and supportive environment. Discover the many reasons why CTS is a great place to advance your career. We are headquartered in Brooklyn, NY with 90+ employees across the US and several other countries. Learn more about us at

JOB SUMMARY
We are seeking an experienced
L3 SOC Engineer
to join our cybersecurity team and serve as a technical leader across incident response, threat detection, security product administration, and GRC advisory. This role will work directly with our IR/SOC/NOC teams, assist with internal SOC 2 compliance, strengthen security operations maturity, and mentor junior analysts.

The ideal candidate is highly technical, adaptable to multi-client MSP environments, and passionate about improving both security posture and team capability.

KEY RESPONSIBILITIES
Incident Response & Threat Detection

• Lead investigation, containment, and remediation of high-severity security incidents.
• Perform advanced threat hunting and analysis using XDR/EDR, SIEM, and network telemetry.
• Develop, refine, and maintain SOC playbooks, workflows, and escalation standards.
• Provide guidance to L1/L2 analysts during live incidents.

Security Product Administration

• Manage and maintain MSP security stack including: XDR/EDR, Email Filtering/Secure Email Gateways, Security Awareness Training (SAT), and Cloud Backup & Recovery tools.
• Ensure full product coverage, agent health, policy integrity, and consistent configuration across all managed clients.
• Identify and roll out new security features, capabilities, and configuration enhancements.
• Develop internal dashboards and metrics to track product performance and compliance.

Security Remediation, Patching & Baseline Configuration

• Support vulnerability and patch management efforts, including server and workstation patching oversight.
• Implement and audit baseline security configurations aligned with CIS Controls, NIST, Microsoft Secure Score, and internal hardening standards.
• Perform recurring configuration reviews to ensure environments remain within compliance and free from policy drift.

GRC Advisory & Client Security Improvements

• Provide cyber advisory services through our GRC platform, including risk assessments, control evaluations, and remediation planning.
• Translate technical security findings into actionable business recommendations for clients.
• Validate client control implementation and maintain accurate, auditor-ready documentation.

Internal SOC 2 Compliance Support

• Assist with maintaining internal SOC 2 Type I/II readiness, including evidence collection and monitoring control compliance.
• Ensure SOC processes, logs, and incident documentation meet audit requirements.
• Identify gaps in SOC 2 controls and drive corrective actions.

Mentorship & Leadership

• Serve as an escalation point for the SOC team and coach analysts to improve investigation quality and response efficiency.
• Conduct training sessions, knowledge-sharing, and after-action reviews to elevate SOC maturity.
• Assist management in developing SOC standards, KPIs, and continuous improvement initiatives.

QUALIFICATIONS

• 5+ years of experience in a SOC, IR, or security engineering role (MSP experience preferred).
• Proven ability to lead complex incident response engagements end-to-end.
• Hands-on experience with XDR/EDR platforms, SIEM tools, M365 security stack, Secure Email Gateways, and backup technologies.
• Strong understanding of threat detection, TTPs, MITRE ATT&CK, log analysis, and network security fundamentals.
• Experience with GRC platforms and security frameworks (NIST CSF, CIS Controls).
• Familiarity with SOC 2 Type I/II controls and audit processes.
• Deep knowledge of Windows, macOS, and cloud environments (Azure/M365).
• Strong scripting/automation skills (PowerShell preferred).

Preferred Qualifications

• MSP background or experience managing security for multiple client environments.
• Certifications such as GCIA, GCIR, GCED, GCIH, GCFA, CISSP, CCSP, Azure Security Engineer, or similar.
• Experience with vulnerability management and patch orchestration tools.
• Proven track record of mentoring and training junior SOC analysts.

Soft Skills

• Excellent communication skills with both technical and non-technical audiences.
• Strong analytical and problem-solving abilities.
• Ability to work independently while also collaborating across teams.
• Calm and decisive under pressure during active incidents.

COMPENSATION
The annual salary range for this role is $100,000 to $110,000.

**CTS participates in the E-Verify Program. As part of this program, the company provides the federal government with your Form I-9 information to confirm your employment eligibility in the United States.

Learn more at (information available in English and Spanish).
BENEFITS**

• Competitive compensation
• Health Insurance (medical, vision, dental), 80% covered for employee-only plans and 75% covered for employee-spouse, employee-kids, and employee-family plans
• Flexible Spending