Tier 2 SOC Analyst

CGI Federal is expanding its Security Operations Center (SOC) capabilities in Knoxville, TN. As cyber threats become more advanced, our analysts play a critical role in protecting federal systems and sensitive information. This opportunity is ideal for early-career to mid-level cybersecurity professionals seeking hands-on SOC experience, access to modern detection and response technologies, and a clear pathway to specializations such as threat intelligence, incident response, automation, and cloud security. Candidates will join a collaborative, mission-focused environment supported by experienced analysts and operational playbooks to ensure consistent service delivery.

This position is located in our Knoxville, TN office; however, a hybrid working model is acceptable.

This role requires shift work, operating on 12-hour shifts on the Panama 2-2-3 Rotation: Teams work 2 days, off 2 days, work 3 days, off 2 days, work 2 days, off 3 days.

Your future duties and responsibilities:

. Monitor and triage security events using playbooks, SIEM tools, and case management systems.

. Respond to alerts, escalations, identify false positives, and escalate incidents for deeper analysis and resolution.

. Collaborate with senior analysts and subject matter experts to resolve incidents and enhance detection capabilities.

. Contribute to the creation and continuous improvement of security runbooks and operational procedures.

. Support monthly reporting and contribute to threat and trend analysis.

. Stay current with emerging threats and participate in team training initiatives to expand your technical skills.

. Gain hands-on experience across a range of security technologies including Splunk, Microsoft Sentinel, Defender, CrowdStrike, Red Hat, AWS and Azure security services, and SOAR platforms.

A strong background in cybersecurity, information security, or information technology.

. 2-5 years SOC monitoring, incident response or threat analysis

. Understanding of network fundamentals, Windows/Linux systems and security tools

. Familiarity with SIEM, EDR/XDR or cloud security monitoring tools.

. Deep understanding of network protocols, operating systems (Windows/Linux), malware behavior, and common attack tactics (TTPs)

. Excellent verbal and written communication skills.

. Ability to remain calm and effective in a fast-paced, team-oriented environment.

. Demonstrated analytical and problem-solving skills.

. US Citizenship, with eligibility to obtain a public trust clearance.

Desired qualifications:

. Proficiency at least one security tool query language (SPL, KQL, XQL)

. Proficiency in at least one programing language, such as Python or JavaScript.

. Technical Knowledge: Deep understanding of network protocols, operating systems (Windows/Linux), malware behavior, and common attack tactics (TTPs).

. Certifications such as GCIH, ECIH, or CySA+.

Due to the nature of this government contract, US Citizenship and the ability to obtain a Public Trust clearance is required., + Operational Security

• Security Analysis

• Cyber

• Security Architecture

• Threat Risk Assessment

CGI is required by law in some jurisdictions to include a reasonable estimate of the compensation range for this role. The determination of this range includes various factors not limited to skill set, level, experience, relevant training, and licensure and certifications. To support the ability to reward for merit-based performance, CGI typically does not hire individuals at or near the top of the range for their role. Compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range for this role in the U.S. is $63,700.00 - $139,300.00.

CGI Federal's benefits are offered to eligible professionals on their first day of employment to include:

. Competitive compensation

. Comprehensive insurance options

. Matching contributions through the 401(k) plan and the share purchase plan

. Paid time off for vacation, holidays, and sick time

. Paid parental leave

Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.