🛠 Tech Stack

💼 About This Role

You'll lead incident response lifecycle activities including detection, analysis, and coordinated response for a 24/7/365 SOC supporting USG customers. You'll standardize runbooks and improve key metrics like MTTA/MTTR.

🎯 What You'll Do

• Drive incident response from detection to coordinated response across CSOC functions
• Develop and standardize incident response runbooks, playbooks, and communication protocols
• Monitor and improve key performance metrics (MTTA/MTTR) and implement corrective actions

📋 Requirements

• Active CISSP certification
• One or more of GCIA, GCIH, GCFA, GCED or IAT Level III per DoD 8570.1
• 5 years of incident response or SOC analyst experience
• Proficient use of SIEM, EDR, IPS/IDS, and CSOC ticketing platforms

✨ Nice to Have

• Familiarity with cloud environments
• Certifications such as GFCA, GPEN, GREM, GFNA