Security Operations Analyst (SR)

About The Position

Requirements

• 5+ years of experience in Information Technology, Cybersecurity, or Intelligence Operations.
• Strong background supporting Computer Incident Response Teams, Cyber Network Operations, or a Security Operations Center (SOC).
• Hands-on experience with SIEM, threat detection, and incident response tools and technologies.
• Proficiency in industry-standard security frameworks and models, including: MITRE ATT&CK Cyber Kill Chain Intelligence-Driven Defense
• Knowledge of best practices for incident response and SOC operations.
• Understanding of intrusion set tactics, techniques, and procedures (TTPs).
• Bachelor's degree in Cybersecurity, Information Technology, or related field.
• Active Top Secret clearance required.

Nice To Haves

• Experience with Microsoft Sentinel, Splunk, or other enterprise SIEM platforms.
• TS/SCI clearance with polygraph.
• One or more GIAC certifications such as: GMON, GCIH, GCFA, GCIA, GNFA, GCTD, or GCFR.

Responsibilities

• Respond to, investigate, and resolve cybersecurity incidents across a large enterprise environment.
• Conduct root-cause analysis and develop strategies to prevent incident recurrence.
• Utilize frameworks such as MITRE ATT&CK, Cyber Kill Chain, and intelligence-driven defense methodologies.
• Analyze intrusion sets, threat actor TTPs, and other indicators of compromise.
• Leverage SIEM/SOAR platforms and security tools (e.g., Microsoft Sentinel, Splunk) to detect and correlate security events.
• Develop and refine incident response processes, playbooks, and best practices.
• Collaborate with cross-functional teams to strengthen the organization's overall security posture.
• Provide mentorship and leadership to less experienced analysts as needed.

Benefits

• competitive pay
• comprehensive health, dental, and vision coverage
• 401(k) retirement plans