SOC Analyst (Cybersecurity)

TL;DR

SOC Analyst (Cybersecurity): Monitoring enterprise security environments and analyzing alerts from SIEM, IDS/IPS, and EDR to identify threats with an accent on initial incident triage and threat correlation. Focus on analyzing security events across diverse platforms, reducing false positives, and ensuring system integrity for the NIH.

Location: Remote (USA). Must hold or be able to obtain a Public Trust clearance.

Company

hirify.global provides professional IT services and software solutions, currently supporting the National Institutes of Health (NIH).

What you will do

• Continuously monitor enterprise security systems and SOC dashboards for suspicious activity.
• Analyze security alerts generated by SIEM, IDS/IPS, EDR, and cloud security platforms.
• Identify indicators of compromise (IOCs) and correlate events across multiple technologies.
• Monitor Windows, Linux, cloud, network, and endpoint environments for malicious activity.
• Perform initial incident triage, classification, and severity determination.
• Validate potential incidents and escalate confirmed threats to Tier 2 and Tier 3 response personnel.

Requirements

• Active Public Trust Clearance or the ability to obtain and maintain NIH suitability/background investigation.
• B.S. in Computer Science, Information Technology, or a related field.
• Minimum 2 years of SOC or cybersecurity monitoring experience.
• Experience investigating cybersecurity incidents within enterprise security environments.
• Knowledge of SIEM platforms and security monitoring technologies.
• Understanding of NIST SP 800-61 (Incident Handling Guide) and the MITRE ATT&CK Framework.