SOC Analyst II

Title: SOC Analyst II

Location: Smyrna, GA (Onsite)

Clearance: Active DoD Secret

Available Shifts: (Swing Shift)- 2pm-11pm, (Mid Shift)- 10pm-7am, plus one weekend per month required

Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense agencies. A recognized leader in navigating technology and security challenges, Foxhole delivers mission-focused innovations to answer evolving and complex needs. Our talented employee-owners provide agile, scalable services and solutions that solve operational gaps, operate critical systems, and protect and secure the enterprise - across the organization and around the world.

Foxhole Technology is seeking an experienced SOC Analyst II as part of a team of information assurance professionals in support of a critical Government program.

Support of Customer 24x7x365 on-premise Security Operations capability managing cybersecurity risks across systems, assets, data, and capabilities. This service is designed to detect and mitigate unauthorized use of Customer materials, ensuring that intellectual property is safeguarded against piracy and theft.

Detect and mitigate unauthorized use of materials.
• Identify vulnerabilities, prevent content exploitation, and reduce potential legal and financial risks.
• Continuously monitor malware detection software tools.
• Monitor network-based security sensors for anomalies and unauthorized activities.
• Monitoring security controls and initiating event/incident handling processes.
• Provide summary reports on collaborative efforts with DoD and non-DoD organizations, including recommendations to improve malware protection strategies.
• Provide quarterly Cybersecurity reports on the security posture of DCMA information systems.
• Integrate Zero Trust component logs and events into existing SIEM/SOAR platforms.
• Develop custom dashboards, alerts, and reports to monitor policy enforcement and detect anomalous behavior.
• Develop and implement SOAR playbooks for automated response to violations or detected threats.
• Document and address deficiencies noted through detection activities, specifically regarding tool misconfigurations, policy gaps, or architectural weaknesses.
• Provide technical knowledge and analysis of security incident responses.
• Perform forensic analysis of devices involved in incidents.
• Investigate potential intrusions and security events to contain and mitigate incidents.
• Research cyber-attacks, malware, and threat actors to determine potential impact and develop remediation guidance.
• Effectively communicate incident response activities.
• Maintain the confidentiality and integrity of the data within SIEM.
• Provide timely and accurate reports to management.
• Collaborate with vendors to ensure proper best practices are enforced and recommendations are delivered.
• Produce high-quality written and verbal communications, recommendations, and findings to management in a timely manner.
• Attend focus groups, trainings, industry conferences, and skills enhancement opportunities.
• Provide timely escalation of events to appropriate teams and external parties.
• Possess and apply a comprehensive knowledge across key tasks and high impact assignments.
• Evaluate performance results and recommends major changes affecting short-term project growth and success.

• Active DoD Secret security clearance
• Between 3-5 years of progressive incident response experience
• DoD IAT II required certification/s (one of the following): CCNA-Security, CySA+ (CSA+), GICSP, GSEC, Security+ CE, CND, SSCP
• CSSP-A required certification/s (one of the following): CEH, GCIA, GCIH

Requirements of position: Think analytically, effective verbal and written communication skills, make decisions, observe/remember details, interpret data, concentrate on tasks, adjust to change, handle stress/emotions. Regular attendance, maintain work schedule, attend meetings, meet deadlines, keyboard/type, handle confidential information, use math/calculations, stay organized, operate office equipment, may direct others. May be exposed to dust/dirt, humidity, and noise.

Foxhole Technology is an Equal Opportunity Employer and makes hiring decisions without regard to race, color, religion, sex (including pregnancy, childbirth and sexual orientation), national origin, age, disability, genetic information, military/veteran status, or any other protected class.