This is a fully remote position, open to applicants in South Carolina.

• Oversee and assess security events across SIEM, EDR, IDS/IPS, and threat intelligence platforms.

• Examine suspicious activities, security incidents, phishing attempts, malware infections, and policy breaches.

• Conduct incident validation, root cause analysis, impact evaluation, and escalate to Tier 3 teams when necessary.

• Generate comprehensive incident reports, timelines, lessons learned, and remediation suggestions.

• Assist in proactive threat hunting utilizing current threat intelligence and MITRE ATT&CK methodologies.

• Refine detection rules, alert thresholds, and correlation logic to enhance SOC efficiency.

• Collaborate with engineering, SOC teams, and state agencies to bolster security monitoring and response capabilities.

• Aid in the onboarding and support of centralized security services.

• Document SOC procedures, runbooks, troubleshooting guides, and operational workflows.

• Act as a customer-facing security subject matter expert (SME) supporting agency stakeholders.

• 5+ years of experience in IT Services.

• 2+ years of Security Monitoring Experience.

• 2+ years of Incident Response Experience.

• 2+ years of experience with the MITRE ATT&CK Framework.

• Familiarity with Security Event Analysis & Threat Detection.

• Experience in Dashboard Development and Security Reporting.

• Strong analytical and investigative skills.

• Preferred experience with Cisco, CCNP, or related vendors.

• Preferred security certifications include CISSP, CISA, CISM, CEH, OSCP, GPEN, or others.

• Local to Columbia, SC or surrounding areas.

Tier 2 SOC Analyst – Contract

People also viewed