Local Defender / Security Operations Center SOC Analyst

About The Position

Requirements

• Bachelors Degree or higher, additional years of experience may be substituted for degree
• Minimum of 5+ years of work-related experience.
• Security+, or other DoD 8570/8140 IAT Level II certification.
• Ability to work on-site daily.
• Proficiency in analyzing security events, logs, and alerts from various security tools (e.g., SIEM, firewalls, IDS/IPS).
• Familiarity with CVEs, threat intelligence frameworks (e.g., MITRE ATT&CK), and vulnerability management practices.
• Knowledge of NETCOM policies, Cyber Tasking Orders (CTOs), and cybersecurity compliance requirements.
• A high-level performer with the ability to be proactive and respond rapidly to changing conditions in a fast-paced environment
• May require CONUS and/or OCONUS travel to customer sites.
• Candidates must have the ability to obtain and maintain a DoD Secret Clearance.

Nice To Haves

• Any of these Certifications: CISSP, CySA+, GIAC Penetration Tester (GPEN), CEH, or GIAC certifications (e.g., GCIH, GCIA), Splunk Core Certified User / Power User, Cisco Certified CyberOps Associate,Offensive Security Certified Professional (OSCP).
• Experience with scripting languages (e.g., Python, PowerShell) for automating security tasks.
• Understanding of advanced threat detection methodologies and incident response processes.
• An Active Secret Clearance is highly desired.

Responsibilities

• Supports our Army customer by providing a critical cybersecurity role through system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings.
• Monitoring security logs, analyzing and reporting cyber incidents, reviewing Common Vulnerabilities and Exposures (CVEs), and implementing directives from NETCOM (e.g., Cyber Tasking Orders - CTO).
• Monitor and analyze security events and alerts generated by SIEM platforms, firewalls, IDS/IPS, and endpoint detection tools to identify potential threats and anomalous behavior.
• Submits and tracks all service tickets submitted internally and externally for Operational Technology (OT) systems.
• Analyze potential security incidents and investigate to determine the scope, impact, and root cause, and recommend effective remediation strategies, based on SIEM data analysis, in accordance with SLAs and OLAs.
• Conduct research on the latest organization's environment threat vectors, attack methodologies, and adversarial tactics, techniques, and procedures (TTPs).
• Support the configuration, tuning, and optimization of security monitoring tools, including SIEM and threat detection platforms.
• Generate detailed and actionable reports for leadership from SIEM platforms summarizing identified threats, incidents, and remediation steps.

Benefits

• BC/BS of Alabama Heath & Dental
• VSP Vision
• Employee Stock Ownership Plan (ESOP)
• 401-K with Matching
• Flexible Spending Account
• Tuition Reimbursement
• Holidays
• Vacation
• Short-term/Long-term Disability