ECS Tech Inc logo
ECS Tech Inc

All candidates must meet the following criteria: Must be a US Citizen, no dual Citizenships. Must be able to secure a Public trust clearance. Must be able to work across multiple programs across the Federal and DOD space. The core values that ECS looks for in an engagement manager include: Teamwork, Respect, Accountability, Integrity, and Leadership.

SOC Analyst II

Location

United States

Posted

6 days ago

Salary

0

Seniority

Mid Level

Job Description

SOC Analyst II

ECS Tech Inc

Role Description Everforth ECS is seeking a SOC Analyst II to work Remotely. Please Note: This position is contingent upon contract award. - Performs SOC Tier 1–3 continuous monitoring of SIEM, SOAR, EDR, IAM, DLP, vulnerability management, and other automated security platforms. - Conducts triage, threat analysis, threat hunting, correlation, enrichment, risk mitigation, and incident response activities. - Documents investigations and artifacts in accordance with IRS and DHS reporting requirements and supports insider threat program and forensic collection. - Collaborates with senior analysts and incident response teams to mitigate risks, enhance security monitoring capabilities, and improve the organization's security posture. Qualifications - Bachelors’ Degree in Cybersecurity, IT, or related field. - 3+ years of SOC experience. - IRS CI - IRS High Risk Clearance. - Knowledge of SIEM, SOAR, EDR, DLP, IAM/PAM tools. - Experience with incident response, threat intelligence, threat hunting, triage, and investigation. - Understanding of federal incident reporting (NIST 800-53, FISMA, IRM 10.8, DHS/Treasury requirements). - Ability to document cases and perform forensic support.

Related Job Pages

More Security Analyst Jobs

Make-A-Wish America logo

Senior IT Security Analyst

Make-A-Wish America

Together, we create life-changing wishes for children with critical illnesses.

Full TimeRemoteTeam 1,001-5,000Since 1980H1B No Sponsor

• Monitor and triage alerts from security tools (SIEM, EDR/XDR, firewalls, email security, cloud security platforms) • Conduct initial investigation and documentation of potential security incidents and escalate as needed • Assist with identity and access management tasks, including user provisioning, access reviews, and MFA/SSO support • Support vulnerability scanning cycles and help track remediation progress • Perform routine security checks to ensure tools and controls are functioning as expected • Assist with researching new threats, vulnerabilities, and security best practices • Support security awareness initiatives and phishing simulation programs • Participate in security incident response activities under guidance from senior staff • Assist in maintaining security documentation, policies, procedures, and reports • Collaborate with IT teams and the MSSP to resolve security-related tickets and inquiries • Support configuration and tuning of existing security solutions under supervision • Work closely with our Managed Security Services Provider (MSSP) and IT teams to review alerts and investigate security incidents • 24/7 Availability for Identity & Access Management, Security Incident Response and Escalation • Performs other related job duties, as assigned

Arizona
$56.3K - $63K / year
Full TimeRemoteTeam 10,001+Since 1987H1B Sponsor

Role Description Eurofins is expanding its Security Operations Centre (SOC) and is looking to strengthen the SOC Consultant (SOC IR L3) Incident Response team. In this role, you will handle the most complex security incidents, leading deep investigations and driving effective remediation actions. As a SOC IR L3 Consultant, you will play a key role in the Security Incident Management process—leading resolution efforts, collaborating with cross-functional teams, and applying your expertise to continuously improve the organization’s overall security posture. The role also includes participation in a 24/7 on-call rotation, shared among team members, to ensure timely response to critical security incidents. Qualifications - 5+ years of experience in SOC, Incident Response, DFIR (Digital Forensics and Incident Response), Threat Hunting, or Security Operations. - Deep understanding of: - Windows, Linux, and Active Directory - Networking (TCP/IP, DNS, HTTP/S, SMTP, VPN, RDP) - Cloud security (Azure, M365, AWS, or GCP) - Identity and Access Management - Strong knowledge of MITRE ATT&CK, Cyber Kill Chain, IOC and TTP analysis. Requirements - Incident Response - Lead and conduct end-to-end investigations and containment, eradication, recovery, and lessons-learned activities. - Coordinate major incidents with technical and business stakeholders. - Develop and maintain SOC procedures and processes. - Conduct host-based and network-based forensic analysis. - Ability to conduct memory investigation and malicious code investigation. - Digital Forensics & Malware Analysis - Memory forensics (Volatility). - Knowledge from appropriate forensic data acquisition tools (FTK, Autopsy, EnCase, X-Ways). - Windows artifact analysis (Prefetch, Event Logs, Registry etc.) - Malware triage and reverse-engineering fundamentals. - Ability to determine root cause and attack path. - Endpoint & Network Security - Experience with EDR solutions. - Ability to investigate network logs. - Soft Skills - Excellent analytical and problem-solving skills. - Ability to work independently during critical incidents. - Strong high-level communication. - Ability to write executive-level incident reports and post-incident reports. - Leadership Expectations - Mentor L1/L2 analysts. - Lead and conduct investigations with minimal supervision. - Drive improvements in detection capabilities and incident readiness. - Develop playbooks, procedures, and response processes. Benefits - Very attractive, multicultural and friendly work environment in a fast-growing international company (more than 50,000 employees now). - Possibility to grow and make the next step in your professional career and self-development. - Long-term relationship and competitive salary package and bonus. - Medical and life insurance. - Possibility of remote working and flexible working hours.

India
Leidos logo

RMF Security Analyst

Leidos

Leidos is an innovation company rapidly addressing the world’s most vexing challenges in national security and health.

Full TimeHybridTeam 10,001+Since 1969H1B Sponsor

Title: RMF Security Analyst Location: Odenton, MD time type Full time job requisition id R-00186528 Leidos has an upcoming opportunity for a cyber professional to join our team at Fort Meade in Maryland. This is a hybrid position based primarily on-site, with opportunity for 1-2 remote days per week depending on mission needs. Our recruiting team will contact applicants as positions become available - we expect to begin onboarding in late summer 2026. This position will support the implementation and administration of information security policies, procedures, and technologies to ensure the protection of systems, applications, and data on tactical and development networks. PRIMARY RESPONSIBILITIES: - Support the Assessment and Authorization of DoD systems, software, and networks in accordance with the Risk Management Framework (RMF), utilizing the Enterprise Mission Assurance Support Service (eMASS) system. - Provide professional security services for IA/Cybersecurity in accordance with US Government (USG), Department of Defense (DoD) and National Security Agency (NSA) policies and guidelines. - Provide the necessary support to monitor and ensure compliance with information security policies, procedures and regulatory requirements including assistance with internal auditing, reporting, technical reviews, and identification of security risks.- Assist with drafting, reviewing, editing, and recommending guidance for Standard Operating Procedures (SOP), Tactics, Techniques, & Procedures (TTP), System Security Plans (SSP), Plan Of Action and Milestones (POA&M), and Federal Information Security Management Act (FISMA). - Support the implementation and administration of information security policies, procedures, and technologies to ensure the protection of systems, applications, and data on tactical and development networks by working hand and hand with technical SMEs, systems administrators and engineers. BASIC QUALIFICATIONS: - Active DoD Secret clearance. - Bachelor's Degree in a related discipline as well as professional, directly relevant experience depending on job level (Level II: 2+ years of experience, Level III: 4+ years of experience). Additional years of professional and/or military experience may be substituted in lieu of degree. - Must possess DoD 8140 (formerly 8570) IAT Level II certification (e.g., Security+) prior to start date. PREFERRED QUALIFICATIONS: - Experience with Cross Domain Solutions and Secret and Below Interoperability (SABI) framework, process and implementation - Experience in performing risk assessment, IT audits, security planning, systems accreditation and policy development. - Experience complying with USG, DoD, and DA regulations and preparing for responding to information security audits and questionnaires. - Understanding of related information technology (e.g. firewalls, VPN, virtualization, DLP, etc) and physical security assets. - Knowledge of domain structures, user authentication, data encryption, access audits and end-user security best practices. - Experience with UNIX/LINUX OS and any scripting language. - Experience working with IDS/IPS and processes. #cdes If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares. Pay Range: Pay Range $69,550.00 - $125,725.00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Maryland
$69.6K - $125.7K / year

Junior Security Analyst

Experian

We're unlocking the power of data to help create a better tomorrow.

Full TimeRemoteTeam 10,001+Since 1996H1B Sponsor

• Partner with system owners to prioritize and coordinate the remediation of security vulnerabilities • Track remediation activities, validate completed fixes, and monitor progress against established deadlines • Hold stakeholders accountable for remediation commitments • Develop and maintain security reports, dashboards, and automation solutions • Create, maintain, and improve security documentation • Assist technical teams in understanding and adhering to security processes • Provide timely and accurate guidance to stakeholders regarding security governance • Identify opportunities to improve vulnerability detection capabilities • Contribute to continuous improvement initiatives

Brazil