Federal Senior SOC Analyst

As Senior SOC Analyst, you will be a founding member of the internal security team within our U.S. federal business unit. Your day-to-day responsibilities will include triaging and investigating security alerts, proactive threat hunting, responding to incidents, building detections, and documenting procedures and playbooks. You will work closely with the federal DevOps, IT, security engineering, and executive leaderships teams to ensure that we maintain the highest security standards as required by our FEDRAMP certification.

Key Duties & Responsibilities:

• Usage of the Darktrace suite of products, as well as FEDRAMP approved EDR/NDR/XDR, vulnerability scanning, and SIEM security tooling.
• You will be expected to cover SOC duties during normal US working hours in your time zone, in addition to participating in a rotating 24/7 on-call schedule.
• Given the start-up nature of the federal business unit, this is a fast-paced role, and you will need to make sure you're an organized, pro-active team player who is comfortable wearing multiple hats. We’re specifically looking for someone who is intellectually curious, humble, and capable of devising solutions to unique problems that may arise. As a company that prides itself on our reactive capabilities, we are looking for someone who can work independently with little or no supervision.

 Qualifications & Experience:

• Minimum 5+ years total experience and four-year university degree, or equivalent military experience.
• Prior experience as a tier 2 or 3 SOC analyst or as an incident responder, preferably in a regulated or high security environment for a fortune 500 or government agency.
• Understanding of DevOps and DevSecOps best practices gained from experience working in or responding to incidents in cloud environments.
• Minimum 5+ years hands on experience using industry leading security tools such as Microsoft Defender, Trend-Micro, Splunk Enterprise, Nessus, or Burp-Suite to analyze data and respond to security incidents.
• Understanding of network, cloud, and endpoint forensics, email analysis, incident response process, and Zero-Trust principals,
• Exposure to threat intelligence principals and experience building custom detections to cover identified gaps.
• Professional certifications, such as CISSP, GIAC, CEH, or other relevant vendor training courses or certifications.
• Willingness to support a 24/7 on-call rotation for security alerts and incidents.
• US Citizenship is required, and the candidate must be able to obtain a security clearance
• Excellent communication, collaboration, documentation, and presentation skills.
• Must be intellectually curious with a demonstrated ability to work independently.

Benefits

• 100% medical, dental and vision insurance, plus dependents
• Paid parental leave
• Pet insurance
• Life insurance
• Commuter benefits
• Employee Assistance Program