Senior SOC Analyst
2 weeks ago
Role: Senior SOC Analyst
Location: Arlington, VA (Onsite)
Job Type: Full Time
Compensation: $130,000 PA
Vendor : Hashicorp
End Customer: Boeing
Core Responsibilities:
- Lead Tier 2/3 incident investigations across classified and unclassified networks.
- Use frameworks such as NIST 800-61, MITRE ATT&CK, and DoD Cyber Kill Chain for structured IR.
- Coordinate response with counterintelligence, compliance, and federal authorities as required.
- Manage and optimize Rapid7 Insight IDR, Insight Connect, Nexpose, and Insight VM.
- Rapid7 Insight IDR (XDR + SIEM) for real-time detection and analytics.
- Rapid7 Insight Connect (SOAR) to automate IR playbooks.
- Rapid7 Nexpose & Insight VM to identify, assess, and prioritize vulnerabilities across hybrid environments.
- Correlate vulnerabilities with threat data to prioritize remediation of exploitable risks.
- Build automation workflows for patching and remediation through Ansible and Puppet.
- Conduct proactive threat hunting against nation-state adversaries using SIEM queries and Python scripts.
- Conduct continuous threat hunting using Python and SIEM queries (KQL, SPL, SQL-like languages).
- Develop advanced detection logic mapped to MITRE ATT&CK TTPs.
- Integrate threat intelligence feeds (STIX/TAXII, MISP, DoD threat intel sources) into SOC workflows.
- Python: Write custom scripts for IOC enrichment, API integrations, and log analysis.
- Ansible: Automate system hardening, patch management, and incident response workflows.
- Puppet: Standardize secure baselines across Linux/Windows systems in both classified and commercial networks.
- Develop reusable automation playbooks integrated with Rapid7 SOAR.
- Secure workloads across AWS GovCloud, Azure Government, and Boeing's private cloud infrastructure.
- Monitor Kubernetes and containerized defense applications for runtime anomalies.
- Implement identity/security policy enforcement across multi-cloud and hybrid environments.
- Ensure compliance with CMMC, NIST 800-171, NIST 800-53, ITAR, and FedRAMP.
- Maintain audit-ready documentation for DoD and regulatory inspections.
- Support Boeing's supply chain cybersecurity programs, ensuring third-party compliance.
- 10+ years in SOC operations, threat detection, and incident response.
- Hands-on experience with the Rapid7 ecosystem (Insight IDR, Insight Connect, Nexpose, Insight VM).
- Strong automation experience using Python, Ansible, and Puppet.
- Familiarity with PowerShell and Bash scripting for cross-platform automation.
- Deep knowledge of nation-state threat actors, APT techniques, and defense cyber operations.
- Experience with SIEM, SOAR, IDS/IPS, EDR/XDR, firewalls, and vulnerability management.
- Strong communication and ability to brief executives and federal stakeholders.
- Bachelors in Cybersecurity, Computer Science, or related field.
- Certifications required: Insight IDR Certified Specialist.
-
Senior SOC Analyst
2 weeks ago
Arlington, VA, United States VetJobs Full timeJob DescriptionSenior SOC Analyst job description Position Summary The Senior SOC Analyst is a key member of a 24/7/365 Security Operations Center, serving as the escalation point for advanced investigations, incident response, and proactive threat hunting. This role conducts higher-level analysis than other analysts on the team, performing deep forensic...
-
Senior SOC Analyst
1 week ago
Arlington, VA, United States National Guard Employment Network Full timeJob DescriptionSenior SOC Analyst job description Position Summary The Senior SOC Analyst is a key member of a 24/7/365 Security Operations Center, serving as the escalation point for advanced investigations, incident response, and proactive threat hunting. This role conducts higher-level analysis than other analysts on the team, performing deep forensic...
-
Senior SOC Analyst
1 week ago
Arlington, VA, United States National Guard Employment Network Full timeJob DescriptionSenior SOC Analyst job description Position Summary The Senior SOC Analyst is a key member of a 24/7/365 Security Operations Center, serving as the escalation point for advanced investigations, incident response, and proactive threat hunting. This role conducts higher-level analysis than other analysts on the team, performing deep forensic...
-
SOC Analyst
1 week ago
Arlington, VA, United States Coalfire Federal Full timeAbout Coalfire Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships...
-
SOC Analyst
1 week ago
Arlington, VA, United States Coalfire Federal Full timeAbout Coalfire Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships...
-
SOC Analyst
1 week ago
Arlington, VA, United States Coalfire Full timeAbout Coalfire Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships...
-
SOC Analyst
1 week ago
Arlington, VA, United States Coalfire Full timeAbout Coalfire Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships...
-
SOC Analyst
1 week ago
Arlington, VA, United States Coalfire Full timeAbout Coalfire Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships...
-
SOC Analyst
1 week ago
Arlington, VA, United States Coalfire Full timeAbout Coalfire Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships...
-
Manager, Detection
1 week ago
Arlington, VA, United States Rapid7 Full timeManager, Detection and Response Services Are you passionate about growing and supporting teams of threat analysts? How about leading the charge against adversaries across a dynamic and ever-evolving threat landscape? As a Manager on Rapid7's Managed Detection and Response (MDR) team, you will lead a group of highly skilled front-line analysts performing...
