Sr. Security Operations Center (SOC) Analyst Tier 3

Lawrenceville, GA, US • Posted 7 hours ago • Updated 1 hour ago

Contract Independent

Contract W2

Contract Corp To Corp

On-site

DCode Talent

Fitment

Dice Job Match Score™

⭐ Evaluating experience...

Job Details

Skills

azure AD
SOC
KQL

Summary

Job Title: Sr. Security Operations Center (SOC) Analyst Tier 3

Location: Lawrenceville, GA (100% On-site)

Duration: 12 Months Contract

Job Description:

We are seeking an elite Tier 3 SOC Analyst with deep expertise across the Microsoft Security ecosystem to support a highly regulated, security-mature enterprise environment. This role is designed for a seasoned security professional capable of leading complex investigations, performing advanced threat hunting, and mentoring junior analysts. Only candidates with demonstrated hands-on experience in large-scale, production Microsoft environments will be considered.

Mandatory Technical Requirements (Non-Negotiable)

8+ years of cybersecurity/SOC experience, including 3+ years at Tier 2/3
5+ years of hands-on experience with:

Microsoft Defender XDR suite
Microsoft Sentinel (SIEM/SOAR)
Microsoft Entra ID (formerly Azure AD)
On-premises Active Directory
Microsoft Defender for Identity (MDI)

Proven expertise in:

Advanced Kusto Query Language (KQL) for detection engineering & threat hunting
Threat Explorer, Advanced Hunting, Incident Correlation
Tenant Block/Allow Lists
Custom analytics rules & automation playbooks in Sentinel

Advanced Skills Required

Detection engineering & use-case development
Threat hunting based on MITRE ATT&CK framework

Deep understanding of:

Identity-based attacks (Pass-the-Hash, Kerberoasting, Golden Ticket)
Endpoint & lateral movement techniques
Cloud attack vectors in Azure/M365

Experience with:

SIEM tuning & false positive reduction
Incident response & digital forensics workflows
Log source onboarding & normalization
Security automation & SOAR integrations

Certifications (Required)

At least two of the following:

GCIA / GCIH / GCED
SC-200 (Microsoft Security Operations Analyst)
SC-300 (Identity & Access Administrator)
CISSP / CISM

Environment Expectations

Experience supporting large enterprise (10,000+ users) environments
Familiarity with hybrid AD / Entra ID identity architectures
Ability to work in high-pressure, 24/7 SOC environments

Soft Skills (Critical)

Demonstrated leadership in incident handling
Ability to mentor Tier 1 / Tier 2 analysts
Strong executive-level communication skills
Ability to defend technical findings to stakeholders

Nice-to-Have (Highly Valued)

Purple team / adversary simulation experience
Malware analysis / reverse engineering exposure
Experience in regulated industries (Finance, Healthcare, Government)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 91166691
Position Id: 2026-354
Posted 7 hours ago

Company Info

About DCode Talent

At Dcode Talent, we specialize in IT staffing and consulting services, connecting skilled professionals with top companies. Our expertise spans across multiple industries, ensuring that businesses find the right talent and IT professionals achieve their career goals.

Go to company profile

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

It looks like there aren't any Similar Jobs for this job yet.

Search all similar jobs