Mid Level SOC Operations Analyst

We are seeking a Mid Level SOC Operations Analyst to support Watch-Floor Operations on a rotating shift schedule . The ideal candidate will possess strong analytical skills and a foundational understanding of cybersecurity operations, with specific exposure to threat detection and incident response. This role is critical to our Security Operations Center (SOC), providing 24/7 monitoring, analysis, and response to security events and threats across our enterprise., + Monitor computer networks in real-time for security issues and suspicious activity.

• Investigate and respond to security breaches, cyber incidents, and anomalous behavior.

• Document security breaches and assess the scope and impact of each incident.

• Perform initial triage and analysis of alerts generated by security tools (e.g., SIEM platforms).

• Conduct forensic analysis of digital artifacts including disk images and log data.

• Assist with penetration testing and vulnerability assessments.

• Apply remediation measures to detected vulnerabilities and provide security hardening recommendations.

• Support the deployment and monitoring of firewalls, encryption tools, and other security technologies.

• Generate incident reports and provide input for root cause analysis and lessons learned.

• Participate in deployable Incident Response Team (IRT) support tasks.

• Perform dynamic analysis and develop timelines and file signature comparisons during investigations.

• Hands-on experience or training with Splunk Enterprise Security .

• Strong knowledge of cybersecurity concepts, attack vectors, and mitigation strategies.

• Familiarity with network protocols, intrusion detection/prevention systems, and log analysis.

• Excellent problem-solving and communication skills.

• Ability to work effectively in a fast-paced, high-stress operational environment on shift schedules.

• 5+ years of directly related experience.

• Active Top Secret Clearance with SCI Eligibility.

Preferred Qualifications:

• Experience with Microsoft Sentinel (SIEM).

• One or more of the following certifications:

• GIAC Continuous Monitoring Certification (GMON)

• GIAC Certified Incident Handler (GCIH)

• GIAC Certified Forensic Analyst (GCFA)

• GIAC Certified Intrusion Analyst (GCIA)

• GIAC Network Forensic Analyst (GNFA)

Education:

• Bachelor's Degree (B.S. or B.A.) in Cybersecurity, Information Technology, Computer Science, or a related field.

CULTURE REQUIREMENTS:

• Engineers, Analysts, and Developers at Cintel, Inc. are highly motivated, technical, and self-organized. We place a lot of trust in our team members to develop technical solutions for ill-

defined problems (i.e. thrive in an environment where the problem is vague, requirements are lacking, and a solution is not obvious). We need problem solvers.

• We want our team members to be self-motivated and eager to learn new skills. If you consider yourself a jack-of-all-trades, and are eager to keep up with the latest trends in technology, you'll fit right in.

Cintel Inc. is a Small Business providing strategies and services to support an array of Government clients in Software Development, Operational/Tactical and Installation/Facilities Energy, Cyber Security, Modeling and Simulation, Data Science, and Programmatic support. We offer our clients nimble, unique, and value focused solutions with an emphasis on people, connectivity, communication, and teamwork. Our team believes that people drive solutions. By connecting people, information, teams, and experience we deliver solutions that respond to customer needs.