SOC Tier 1 Analyst

Job description

Everforth ECS is seeking a SOC Tier 1 Analyst to work in our Portland, OR office. Please Note: This position is contingent upon contract award. The SOC Analyst 1 supports the organization's security operations by monitoring security events, performing first-level alert triage, validating suspicious activity, documenting tickets, and escalating confirmed or higher-risk events using approved runbooks and procedures. This role is the initial monitoring and triage tier within the SOC Analyst role family. The ideal candidate has foundational cybersecurity or IT operations experience, understands basic security concepts and defensive technologies, and can follow established procedures while communicating clearly with SOC Analyst 2, SOC Analyst 3, incident response, engineering, and other program stakeholders. Key Responsibilities: Security Monitoring & Initial Alert Triage - Monitor security events and alerts across SIEM, EDR, IDS/IPS, cloud, network, identity, case management, and other approved security platforms. - Perform first-level alert validation to determine whether activity is benign, suspicious, policy-related, or requires escalation. - Assign initial severity, scope, affected...