Sr SOC Analyst

We are seeking an experienced Senior Incident Response Analyst and Watchfloor Analyst to lead and oversee advanced incident response and watchfloor operations. This senior role requires deep expertise in detecting, analyzing, and responding to sophisticated cyber threats, with responsibilities that include mentoring junior staff and enhancing SOC processes. Based in Huntsville, AL this position requires strong leadership, extensive hands-on experience, and the ability to operate in a fast-paced, shift-based environment..

• Lead threat monitoring activities to detect and analyze complex security incidents using SIEM tools, IDS/IPS, EDR, and other advanced security platforms.


• Direct and manage incident response actions, from identification through containment, eradication, and recovery.


• Provide guidance, training, and mentorship to junior and mid-level analysts, fostering a culture of continuous improvement and knowledge sharing within the team.


• Leverage threat intelligence sources to inform proactive threat hunting and incident analysis, maintaining awareness of evolving threat landscapes.


• Ensure thorough documentation of incidents and contribute to the continuous improvement of SOC playbooks and response protocols.


• Work closely with SOC leadership, incident response teams, and threat intelligence analysts to strengthen the organization's overall security posture.

Minimum Qualifications

• 
  

  with 8 years + Bachelors or 4 years additional experience

  
  


• 5+ years of experience


• Active TS clearance with SCI eligibility

Other Job Specific Skills

• Strong interpersonal skills to effectively interface with all levels of employees, management and outside representatives.


• Familiarity with security industry standards (ISO 17799, NIST 800 series, etc.)


• Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing.


• Demonstrated ability to write business and technical reports and to participate in presentations.


• Possess a thorough understanding of technical interface requirements and processes.


• Must be able to lead a team of security professionals.


• Ability to resolve moderately complex and diverse technical and supervisory issues.


• Must demonstrate advanced knowledge and understanding of data security principles, theories, regulations and practices.


• Ability to perform vulnerability testing and operating system hardening.


• Ability to maintain confidentially for security operational information.

#cjpost