Tier 3 SOC Analyst – Senior

7+ years of experience in security operations, incident response, or cyber threat analysis
Experience with SIEM platforms, EDR tools, packet capture analysis, and forensic toolkits
Knowledge of MITRE ATT&CK framework, network protocols, malware behavior, and adversary TTPs
Ability to work under pressure and communicate effectively with both technical and executive stakeholders
Secret clearance
Bachelor’s degree in a Computer Science or Information Technology field
CISSP, CISM, CEH, CompTIA CASP+, GCIH, GNFA, GCFA, GREM, GSEC, or Certified SOC Analyst Certification

Investigate and resolve high-severity and advanced persistent threats (APTs), zero-day exploits, and targeted attacks
Perform deep-dive analysis across endpoint, network, and cloud environments
Conduct advanced threat hunting based on hypotheses, threat intelligence, and behavioral indicators
Serve as the final escalation point for Tier 1 and Tier 2 analysts, providing technical guidance and mentoring
Produce comprehensive incident reports with root cause analysis, timelines, and recommended corrective actions
Interface with incident response teams, ISSOs, system owners, and agency leadership during incident handling
Conduct advanced analysis, lead incident response efforts, and develop mitigation strategies to protect critical government systems and data

Experience with cloud security operations, including AWS or Azure, and Zero Trust environments
Experience contributing to threat detection engineering or threat intelligence integration