Senior SOC Engineer (Level 3)

CTS delivers comprehensive IT solutions to meet the unique demands of mission-driven organizations. We have deep expertise in supporting nonprofits and educational institutions, however our team is equipped to handle the complexities of IT across a variety of sectors. We're committed to making technology work seamlessly, so our clients can focus on making a difference, regardless of their industry.

At CTS, we believe in building a company culture that fosters growth, collaboration, and innovation. By joining our team, you will not only help empower businesses with cutting-edge IT solutions but also build a rewarding career in a dynamic and supportive environment. Discover the many reasons why CTS is a great place to advance your career. We are headquartered in Brooklyn, NY with 90+ employees across the US and several other countries. Learn more about us at

JOB SUMMARY

We are seeking an experienced L3 SOC Engineer to join our cybersecurity team and serve as a technical leader across incident response, threat detection, security product administration, and GRC advisory. This role will work directly with our IR/SOC/NOC teams, assist with internal SOC 2 compliance, strengthen security operations maturity, and mentor junior analysts.

The ideal candidate is highly technical, adaptable to multi-client MSP environments, and passionate about improving both security posture and team capability.

KEY RESPONSIBILITIES

Incident Response & Threat Detection

• Lead investigation, containment, and remediation of high-severity security incidents.
• Perform advanced threat hunting and analysis using XDR/EDR, SIEM, and network telemetry.
• Develop, refine, and maintain SOC playbooks, workflows, and escalation standards.
• Provide guidance to L1/L2 analysts during live incidents.

Security Product Administration

• Manage and maintain MSP security stack including: XDR/EDR, Email Filtering/Secure Email Gateways, Security Awareness Training (SAT), and Cloud Backup & Recovery tools.
• Ensure full product coverage, agent health, policy integrity, and consistent configuration across all managed clients.
• Identify and roll out new security features, capabilities, and configuration enhancements.
• Develop internal dashboards and metrics to track product performance and compliance.

Security Remediation, Patching & Baseline Configuration

• Support vulnerability and patch management efforts, including server and workstation patching oversight.
• Implement and audit baseline security configurations aligned with CIS Controls, NIST, Microsoft Secure Score, and internal hardening standards.
• Perform recurring configuration reviews to ensure environments remain within compliance and free from policy drift.

GRC Advisory & Client Security Improvements

• Provide cyber advisory services through our GRC platform, including risk assessments, control evaluations, and remediation planning.
• Translate technical security findings into actionable business recommendations for clients.
• Validate client control implementation and maintain accurate, auditor-ready documentation.

Internal SOC 2 Compliance Support

• Assist with maintaining internal SOC 2 Type I/II readiness, including evidence collection and monitoring control compliance.
• Ensure SOC processes, logs, and incident documentation meet audit requirements.
• Identify gaps in SOC 2 controls and drive corrective actions.

Mentorship & Leadership

• Serve as an escalation point for the SOC team and coach analysts to improve investigation quality and response efficiency.
• Conduct training sessions, knowledge-sharing, and after-action reviews to elevate SOC maturity.
• Assist management in developing SOC standards, KPIs, and continuous improvement initiatives.

QUALIFICATIONS

• 5+ years of experience in a SOC, IR, or security engineering role (MSP experience preferred).
• Proven ability to lead complex incident response engagements end-to-end.
• Hands-on experience with XDR/EDR platforms, SIEM tools, M365 security stack, Secure Email Gateways, and backup technologies.
• Strong understanding of threat detection, TTPs, MITRE ATT&CK, log analysis, and network security fundamentals.
• Experience with GRC platforms and security frameworks (NIST CSF, CIS Controls).
• Familiarity with SOC 2 Type I/II controls and audit processes.
• Deep knowledge of Windows, macOS, and cloud environments (Azure/M365).
• Strong scripting/automation skills (PowerShell preferred).

Preferred Qualifications

• MSP background or experience managing security for multiple client environments.
• Certifications such as GCIA, GCIR, GCED, GCIH, GCFA, CISSP, CCSP, Azure Security Engineer, or similar.
• Experience with vulnerability management and patch orchestration tools.
• Proven track record of mentoring and training junior SOC analysts.

Soft Skills

• Excellent communication skills with both technical and non-technical audiences.
• Strong analytical and problem-solving abilities.
• Ability to work independently while also collaborating across teams.
• Calm and decisive under pressure during active incidents.

COMPENSATION

The annual salary range for this role is $100,000 to $110,000.

CTS participates in the E-Verify Program. As part of this program, the company provides the federal government with your Form I-9 information to confirm your employment eligibility in the United States.

Learn more at (information available in English and Spanish).

BENEFITS

• Competitive compensation
• Health Insurance (medical, vision, dental), 80% covered for employee-only plans and 75% covered for employee-spouse, employee-kids, and employee-family plans
• Flexible Spending Account (FSA)
• Health Savings Account (HSA)
• Employee Assistance Program (EAP)
• Retirement Plan (401(k)) with company match
• Commuter Benefits
• Short-Term Disability Insurance fully paid by the company
• Long-Term Disability Insurance fully paid by the company
• Life and AD&D Insurance, with optional Supplemental Life Insurance
• Paid Time Off, including Paid Parental Leave
• 10 Holidays
• 2 Floating Holidays
• Please note that the availability and specifics of benefits may vary depending on your country of residence.

THE HIRING PROCESS

We will try to make it as fast as possible! :-) We use Greenhouse to help us schedule the meetings so emails will come from [email protected].

Once you are successfully approved on one step, you will be moved to the following one.

[*] Steps 4, 5 and 6 may not occur or be set up differently, depending on the position. We will let you know at the beginning of your process with us!

• Application review
• First interview with our team, in a 30 minutes phone call
• Interview with the Hiring Manager, from 30 to 45 minutes online video call
• [*] Case Study or a Technical Exercise to be presented to our team in a Panel Interview (with 2 or more of our team members), usually for 1 hour
• [*] Team Interview, a conversation with future colleagues, from 45 minutes to 1 hour
• [*] Executive Interview with one of our Leaders, from 30 to 45 minutes
• An offer is extended
• Welcome to CTS!! \o/

CTS is proud to be an equal opportunity employer that celebrates diversity and is committed to creating an inclusive workplace with equal opportunity for all applicants and employees. Our goal is to recruit the most talented people from a diverse candidate pool regardless of race, color, ancestry, national origin, religion, disability, sex (including pregnancy), age, gender, gender identity, sexual orientation, marital status, veteran status, or any other characteristic protected by law.

CTS is committed to working with and providing access and reasonable accommodation to applicants. If you require an accommodation, please reach out to [email protected] once you've begun the interview process. All requests for accommodations are treated discreetly and confidentially, as practical and permitted by law.

CTS participates in the E-Verify Program. As part of this program, the company provides the federal government with your Form I-9 information to confirm your employment eligibility in the United States.

Learn more at (information available in English and Spanish).