Tech Stack

Description

You will support Security Operations at a client site in Washington, DC, engineering, managing, and monitoring SOC systems, performing incident response and digital forensics, and developing reports for technical and executive audiences.

Requirements

• Current TS/SCI clearance or eligible for Sensitive Compartmented Information
• Established experience in SOC environment
• Knowledge of SIEM and cloud architectures (AWS or Azure)
• Experience with scripting languages (PowerShell, Python, Bash)
• Available for after-hours/weekend work in urgent incident response

Responsibilities

• Engineer, manage, and monitor SOC systems
• Perform incident response and digital forensics
• Conduct host forensics, network forensics, log analysis, and malware triage
• Interface with client contact(s) professionally
• Develop comprehensive reports and presentations