Senior SOC AnalystKeenLogic • Merrifield, VA, US

Senior SOC Analyst

KeenLogic • Merrifield, VA, US

3 days ago

Job type

Full-time

Quick Apply

Job description

Senior SOC Analyst and Incident Responder KeenLogic is seeking to hire a Senior SOC Analyst & Incident Responder to join our team at the Drug Enforcement Administration.

All the duties listed support one or more of the following cybersecurity- related functions; information security, SPAA, incident response, cyber security, insider threat, computer forensics, vulnerability assessment and management, network data capture, intrusion detection, log management, auditing, security incident and event management (SIEM), and penetration testing.

This is a full-time position oﬀering Fortune 500-level health / dental / vision, PTO, 401k, and Life Insurance.

This onsite role, with a daily schedule from 7 AM to 3 PM, based in Merriﬁeld, VA .

Position Summary The Senior SOC Analyst is a key member of the 24 / 7 / 365 Security Operations Center, which serves as the escalation point for advanced investigations, incident response, and proactive threat hunting.

This role conducts higher-level analysis than other analysts on the team.

A senior SOC analyst performs deep forensic investigations, correlates multi-source threat intelligence information, and guides containment and remediation strategies.

The Senior SOC Analyst identiﬁes and mitigates advanced threats across enterprise IT endpoints, cloud environments, and OT systems.

They leverage frameworks like the MITRE ATT&CK framework and others to detect, disrupt, and prevent malicious activity from occurring in the enterprise environment.

They work closely with the SOC manager and leads.

They mentor junior staﬀ, assist to reﬁne SOC processes, and ensures the organization maintains a strong cybersecurity posture.

They collaborate with engineers, threat intelligence and forensics teams to enhance detection capabilities, improve incident response readiness, and deliver actionable security insights to leadership.

Required Qualiﬁcations Active Secret or Top Secret clearance Master’s degree and 8 years or Bachelor's degree and 11 years Documented work experience performing any combination of Information System Security, Security Assessment & Authorization, Cybersecurity, Computer Forensics, or Insider Threat One of the following required :

CBROPS CFR CompTIA : CySA+, Security + CE, CASP+CE FITSP- O SANS : GCFA, GCIA, GDSA, GICSP CCNA-Security, CCNP Security CISSP (or associate), CCSP CISA SSCP CND Duties and Responsibilities Lead advanced incident detection, investigation, and analysis eﬀorts.
Correlate SIEM, EDR, IDS / IPS, and ﬁrewall data to identify and analyze potential incidents. Perform deep-dive investigations to determine root cause, scope, and impact of incidents.

Apply MITRE ATT&CK and other frameworks for adversary TTP identiﬁcation.

Conduct kill-chain and supply chain analysis to understand and counter threats.

Coordinate and direct complex incident response activities.

Guide preparation, identiﬁcation, containment, eradication, and recovery actions in collaboration with SOC, forensics, and engineering teams.

Serve as the primary escalation point for high-impact or advanced incidents.

Ensure incident handling aligns with established guidelines, response plans, and playbooks.

Conduct proactive threat hunting to identify emerging risks.

Analyze telemetry, logs, and behavioral patterns for indicators of compromise or attack.

Hunt for advanced persistent threats and undiscovered vulnerabilities.

Use advanced queries in SOC cybersecurity tools to detect anomalous or suspicious activity.

Work with forensic teams to ensure proper forensic collection, preservation, and analysis of digital evidence.

Coordinate with forensics teams to ensure chain-of-custody and evidence integrity.

Extract and analyze relevant artifacts to support investigations and post-incident reviews.

Document and communicate forensic ﬁndings to stakeholders.

Develop and enhance SOC processes, playbooks, and detection capabilities.

Reﬁne detection rules, alert thresholds, and automation workﬂows in SIEM / SOAR platforms and other cybersecurity tools.

Create SOPs, knowledge base articles, and training materials for SOC staﬀ.

Recommend and guide implementation of new detection and analysis tools.

Perform threat intelligence collection, analysis, and dissemination.

Gather threat data from internal, classiﬁed, and open-source intelligence feeds.

Analyze and contextualize intelligence to produce actionable recommendations.

Share relevant threat information with SOC, leadership, and partner teams.

Mentor and train SOC analysts to improve investigative capabilities and analytical thought process.

Provide real-time guidance during active incidents.

Conduct regular training sessions, tabletop exercises, and red / blue team drills.

Validate analyst ﬁndings and provide feedback to designed to provoke thought, improve accuracy, and investigative thoroughness.

Collaborate with stakeholders to strengthen overall cybersecurity posture.

Work with engineering, IT, and cloud teams to address identiﬁed vulnerabilities.

Participate in tool evaluations, recommending solutions that enhance SOC capabilities and identify capability overlap.

Support internal coordination with DEA sections, divisions, and external entities.

Maintain documentation and reporting for SOC operations.

Record investigative steps, evidence, and incident timelines in case management systems.

Generate incident reports, trend analyses, and post-mortem summaries.

Provide executive-level brieﬁngs on security events and SOC performance.

Create a job alert for this search

Soc Analyst • Merrifield, VA, US

Related jobs

SOC Analyst

Fusion Technology • Herndon, VA, USA

Temporary

Quick Apply

Fusion Technology is a performance-driven HUBZone Small Business concern residing in the heart of the beautiful mountainsides of West Virginia, steps away from the Federal Bureau of Investigation's...Show more

Last updated: 30+ days ago

Senior AF Readiness & ISR Analyst

Clearance Jobs • Washington, DC, US

Full-time

Top Secret / SCI Intelligence, Surveillance, and Reconnaissance (ISR) SME.Join GDIT and provide critical on-site Intelligence, Surveillance, and Reconnaissance (ISR) expertise and counsel to senior-l...Show more

Last updated: 10 days ago • Promoted

Senior All Source Readiness Analyst

Core One • Washington, DC, US

Full-time

Senior All Source Readiness Analyst.Join our team at Core One! Our mission is to be at the forefront of devising analytical, operational and technical solutions to our Nation's most complex nationa...Show more

Last updated: 30+ days ago • Promoted

AR Offshore Operations Senior Analyst

Tenet Healthcare • Washington, DC, US

Full-time

Focus on the core content of the job post, removing all extra metadata, navigation mentions, and redundant headers.Keep the formatting beautiful and high signal to noise ratio.Show more

Last updated: 29 days ago • Promoted

Senior SPPBE Analyst

Clearance Jobs • Washington, DC, US

Full-time

Delta Solutions & Strategies is seeking a Senior SPPBE Analyst to support the Strategy, Planning, Programming, Budgeting, and Execution (SPPBE) processes for the United States Space Force.Applying ...Show more

Last updated: 9 days ago • Promoted

Senior CI Analyst SCRM (College Park) - USACIC

Celestar • College Park, MD, US

Full-time

Celestar Corporation is seeking a Senior CI Analyst SCRM to support the U.Army Intelligence and Security Command (INSCOM) under the United States Army Counterintelligence Command (USACIC) Analytica...Show more

Last updated: 30+ days ago • Promoted

Senior Information System Security Officer (ISSO)

Leidos Inc • Gaithersburg, MD, United States

Full-time

Leidos National Security Sector combines technology-enabled services and mission software capabilities in the areas of cyber, logistics, security operations, and decision analytics to support our d...Show more

Last updated: 30+ days ago • Promoted

Senior SPPBE Analyst

Delta Solutions & Strategies • Washington, DC, US

Full-time

Last updated: 9 days ago • Promoted

SOC Shift Lead-Greenbelt, MD

Staffing • Greenbelt, MD, US

Full-time

Duration : Long Term (12-18 Months).Start Date : Upon Obtaining a Clearance.Citizenship / Clearance Requirement : U.Job Description : Seeking an experienced Security Operations Center (SOC) Technical Shi...Show more

Last updated: 4 days ago • Promoted

Senior Risk Analyst

Zip Co Limited • Washington, DC, US

Full-time

Join our Risk team at Zip, where we focus on ensuring the success and profitability of portfolio.Our team leverages analytics to manage exposure, improve customer engagement, and continually manage...Show more

Last updated: 30+ days ago • Promoted

SOC Technical Lead

ManTech • McLean, VA, United States

Full-time

This position may require occasional local travel to.The SOC Technical Lead will provide technical leadership and subject matter expertise for incident response and analysis.Lead a team of Cyber Op...Show more

Last updated: 30+ days ago • Promoted

Senior CI Analyst SCRM (College Park) - USACIC

Clearance Jobs • College Park, MD, US

Full-time

Senior CI Analyst SCRM (College Park) - USACIC.Celstar Corporation is seeking a Senior CI Analyst SCRM to support The U.Army Intelligence and Security Command (INSCOM) under the United States Army ...Show more

Last updated: 30+ days ago • Promoted

Technology Transfer Analyst, Senior

Booz Allen Hamilton • Washington, DC, US

Full-time +1

Technology Transfer Analyst, Senior.International Traffic in Arms Regulations (ITAR), Export Administration Regulations (EAR), and the Department of Defense's (DoD) Technology Security and Foreign ...Show more

Last updated: 21 hours ago • Promoted • New!

Senior ISSO

TestPros • Washington, DC, US

Full-time

Quick Apply

Company Overview TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.Federal, St...Show more

Last updated: 30+ days ago

SOC Security Analyst L3

BlueVoyant • Hybrid in College Park, Maryland, MD, US

Full-time

Quick Apply

SOC Security Analyst L3 Location : .Hybrid in College Park, Maryland (1-2 days per week in office) Shift Requirement : BlueVoyant's U. Commercial SOC operates on a four days on, three days off sc...Show more

Last updated: 9 days ago

Senior Analyst - FDB SSO

Clearance Jobs • Washington, DC, US

Full-time

Location : Pentagon, Washington, D.Clearance Required : Active Secret (TS / SCI preferred) Position Type : Full-Time, On-Site Contract Type : Support Services Contract - DCS G-8 Force Development Directo...Show more

Last updated: 30+ days ago • Promoted

Senior CI Analyst RDA (College Park) - USACIC

Celestar • College Park, MD, US

Full-time

Celestar Corporation is seeking a Senior CI Analyst RDA to support The U.Army Intelligence and Security Command (INSCOM) under the United States Army Counterintelligence Command (USACIC) Analytical...Show more

Last updated: 30+ days ago • Promoted

Lead Tier 2 SOC Analyst

Agile Defense, Inc. • Washington, DC, United States

Full-time

At Agile Defense we know that action defines the outcome and new challenges require new solutions.That’s why we always look to the future and embrace change with an unmovable spirit and the courage...Show more

Last updated: 30+ days ago • Promoted