Senior SOC Analyst

Job Title: Senior SOC Analyst

Posting Title: Cyber Command Analyst Senior
Posting ID: 10835
Location: Phoenix AZ (100% Onsite North Phoenix I 17 & Greenway)
Position Type: Staff Augmentation
Employment Type: Contract
Duration: 05/25/2026 11/30/2026
Schedule: Full-Time 40 hours/week
Shift: Swing Shift (12:00 PM 9:00 PM)

• Tuesday Saturday (Saturday hours flexible) OR
• Sunday Thursday (Sunday hours flexible)

Number of Positions: 2
Pay Type: Hourly
Security Clearance: Required (state onboarding and PO issuance required)
Citizenship Requirement: U.S. Citizens only

AZDOHS Cyber Command is seeking Senior Security Operations Center (SOC) Analysts to provide advanced cyber threat monitoring detection and incident response support for the Central Arizona SOC (AZSOC). This role supports enterprise-wide cyber defense operations and requires strong technical expertise analytical skills and the ability to operate in a fast-paced high-visibility environment.

This position is 100% onsite and provides coverage for swing shifts and weekend operations in North Phoenix.

• Conduct daily network traffic analysis to identify and characterize anomalous or malicious activity
• Perform in-depth system and network forensics to detect contain and eradicate cyber threats
• Analyze network traffic and system logs to identify potential threats to enterprise resources
• Detect investigate document and respond to cyber incidents and suspicious activity
• Generate detailed incident reports and cyber defense trend analyses
• Identify tactics techniques and procedures (TTPs) associated with intrusion sets
• Reconstruct malicious attacks using available telemetry and forensic data
• Proactively identify emerging threats and distribute enterprise-wide alerts
• Coordinate and collaborate with enterprise cyber defense teams to validate alerts
• Monitor software patches and security fixes; test and validate modified systems
• Conduct security reviews and identify architecture gaps with mitigation recommendations
• Recommend vulnerability remediation and corrective actions
• Process document and coordinate incident resolution with internal and external stakeholders
• Notify leadership incident responders and service providers of suspected cyber incidents and communicate impact status and response actions per incident response plans

• Minimum 2 years of experience in a Security Operations Center (SOC) or related security role
• Strong end-to-end understanding of IT systems with a focus on cybersecurity
• Proven ability to triage and investigate security alerts across multiple domains (network endpoint identity logs etc.)
• Experience supporting incident response and incident management efforts
• Ability to work effectively under pressure manage multiple priorities and maintain attention to detail
• Strong professional communication and customer service skills to support statewide stakeholders
• Fast learner with strong problem-solving and analytical capabilities

• Local candidates only must be local at time of submission
• Resume must clearly state the candidates current location
• Must be available for in-person interviews within one week of posting close
• Must be able to start within two weeks of offer
• No visa holders or Green Card candidates U.S. Citizenship required
• Travel: None