Security Operations Center (SOC) Analyst, Journeyman

Job description

Responsibilities We are seeking a highly skilled and innovative Security Operations Center (SOC) Analyst, Journeyman to join our team in the greater DMV area, supporting the Army National Guard. Responsibilities: - Perform advanced analysis of security events escalated from Tier 1: correlate SIEM logs, IDS/IPS alerts, EDR/endpoint telemetry, network flows, and threat‑intelligence feeds to identify true incidents. - Investigate suspected compromises, conduct risk assessments for access requests, and develop initial countermeasure recommendations in coordination with SOC, CIRT, and RCC‑ARNG. - Author, tune, and refine detection content (SIEM rules, IDS/IPS signatures, filters) to improve fidelity and reduce alert noise. - Execute deeper forensic/log analysis, reconstruct timelines, and validate detections to support escalation and remediation workflows. - Document investigation steps, produce incident summaries and technical inputs for SOC reports, and maintain case evidence and tickets. - Coordinate with engineering and sensor owners on tuning, deployment of detection logic, WCF/FPA policy adjustments, and monitoring enhancements. - Contribute to SOC playbook updates, detection engi...