SOC Engineering Analyst (TS/SCI CI Poly)
Apply NowCompany: Piper Companies
Location: Springfield, VA 22153
Description:
Zachary Piper Solutions is seekinga SOC Engineering Analyst to support a classified cyber security operations center for NRO in Springfield, VA. The team is seeking a cyber analyst and engineering professional to implement innovative security tools, processes, and procedures to secure a large-scale Azure and M365 environment.
Clearance: Active TS/SCI CI Polygraph
Location: Springfield, VA
This job opens for applications on 4/4/2025. Applications for this job will be accepted for at least 30 days from the posting date
Responsibilities of the SOC Engineer:
Qualifications of the SOC Engineer:
Compensation of the SOC Engineer:
Keywords: Threat analysis, Microsoft defender, MS, Defender, azure, CI, Counter intelligence, CI Polygraph, VM, virtual machines, M365, Sentinel, Sentinel One, SentinelOne, forensics, spring, cloud, SIEM, EDR, endpoint, SOC, engineer, engineering, cyber security engineer, cyber analyst, malware detection, adversary profiling, vulnerability assessment, Incident response, threat hunting, phishing campaigns, cyber forensics, Darknet monitoring, IOC collection, security consulting, strategic intelligence, Risk mitigation, penetration testing, trend analysis, data encryption, TS/SCI, Polygraph, SOC, SIGINT, DoD, MD, Maryland, Sec+, CySA+, CEH, malware, MISP, Forescout, threat intelligence, network security, threat detection, IOC, indicator of compromise, top secret, CI polygraph, trend analysis, APT, advanced persistent threat, deep web, information assurance, cyber, cyber security, cybersecurity, adversary, analysis, reporting, briefing, SCI, SCIF, On site, hybrid, OPSEC, Intelligence, intel, intelligence reporting, OSINT, open source, open-source, DHS, federal, government, contract, analysis, threat, cyber threat, threat intelligence, SIEM, splunk, wireshark, PCAP, malware, pen test, penetration testing, TTP, TTPs
Clearance: Active TS/SCI CI Polygraph
Location: Springfield, VA
This job opens for applications on 4/4/2025. Applications for this job will be accepted for at least 30 days from the posting date
Responsibilities of the SOC Engineer:
- Analyze environment scoping information and inventory to gain a thorough understanding of the organization's business, applications, and technical solutions.
- Be well versed in the areas of focus on the security roadmap and understand their implementation and impact on SOC staff tasks.
- Clarify the connection between IT and organizational security for the SOC, detailing their responsibilities and tasks.
- Provide clients with technical guidance and recommendations to enhance their security posture within managed products.
- Educate the SOC team on preventative maintenance and roadmap capabilities.
- Participate in audit reviews to address coverage gaps identified by the SOC team.
- Develop and explain reporting templates, set expectations for their cadence, and establish a review process for continuous improvement.
- Configure, maintain, and monitor SIEM systems.
- Design and build security architecture and systems.
- Collaborate with development operations teams to ensure systems are current.
- Document requirements, procedures, and protocols to provide necessary resources for users.
- Assist customers with complex operational issues.
- Collaborate with IT professionals to swiftly resolve vulnerabilities such as spam, viruses, spyware, and malware.
Qualifications of the SOC Engineer:
- Active Top Secret/SCI Clearance
- 3+ years of experience in security engineering, specializing in M365 and Azure platforms.
- Security+ certification.
- Proficient in Azure and M365 environments.
- Extensive experience with various SOC engineering and administration tools.
- Manages daily alerts and incidents; monitors, tracks, analyzes, and records activities.
- Monitors security vulnerability information from vendors and third parties.
- Strong engineering analysis capabilities
- Utilize advanced forensics skills to assess current malware and phishing threats.
- Proficient with Microsoft Azure Sentinel and Microsoft Defender Suite.
- Experienced in SOC capabilities using tools such as Azure Monitor, Azure Sentinel, Azure Automation, Azure Backup, and Azure Security Center.
- Apply these tools to IaaS and PaaS services, including VMs, Azure Service Environment (ASE), Azure Kubernetes Service (AKS), Spring Cloud, and Azure Virtual Desktop.
Compensation of the SOC Engineer:
- Total compensation based on experience level - $150,000 - $170,000+ based on experience level
- Full Benefits: PTO, 11 Paid Holidays Medical, Dental, and Vision, 401k with ADP
- Certification reimbursement - Microsoft Gold Partner
Keywords: Threat analysis, Microsoft defender, MS, Defender, azure, CI, Counter intelligence, CI Polygraph, VM, virtual machines, M365, Sentinel, Sentinel One, SentinelOne, forensics, spring, cloud, SIEM, EDR, endpoint, SOC, engineer, engineering, cyber security engineer, cyber analyst, malware detection, adversary profiling, vulnerability assessment, Incident response, threat hunting, phishing campaigns, cyber forensics, Darknet monitoring, IOC collection, security consulting, strategic intelligence, Risk mitigation, penetration testing, trend analysis, data encryption, TS/SCI, Polygraph, SOC, SIGINT, DoD, MD, Maryland, Sec+, CySA+, CEH, malware, MISP, Forescout, threat intelligence, network security, threat detection, IOC, indicator of compromise, top secret, CI polygraph, trend analysis, APT, advanced persistent threat, deep web, information assurance, cyber, cyber security, cybersecurity, adversary, analysis, reporting, briefing, SCI, SCIF, On site, hybrid, OPSEC, Intelligence, intel, intelligence reporting, OSINT, open source, open-source, DHS, federal, government, contract, analysis, threat, cyber threat, threat intelligence, SIEM, splunk, wireshark, PCAP, malware, pen test, penetration testing, TTP, TTPs