SOC Analyst Shift Lead
San Antonio, TX - USA
Job Summary
Job Family:
IT Cyber Security
Travel Required:
Clearance Required:
What You Will Do:
Monitor security alerts and events in the Security Operations Center (SOC) and perform initial triage analysis and escalation as needed.
Investigate potential security incidents using SIEM endpoint network and other security tools to determine scope impact and next steps.
Document findings actions taken and incident details clearly and accurately in accordance with SOC procedures and reporting requirements.
Escalate confirmed or high-risk incidents to senior analysts or incident response teams when appropriate.
Support threat detection alert tuning and ongoing improvement of SOC monitoring processes and playbooks.
Collaborate with internal teams to gather information support investigations and help protect enterprise systems and data.
Stay current on common cyber threats vulnerabilities and attacker tactics techniques and procedures (TTPs).
What You Will Need:
Bachelors degree from an accredited university.
Minimum of 6 overall years of work experience 4 years ideally of experience in cybersecurity information technology or a related technical support role.
Strong understanding of security operations incident response and common cyber threats.
Familiarity with SIEM tools log analysis and endpoint or network security concepts.
Strong analytical and problem-solving skills with the ability to prioritize and respond to alerts in a fast-paced environment.
Excellent written and verbal communication skills with attention to detail and documentation accuracy.
Ability to work collaboratively with cross-functional teams and follow established procedures.
High school diploma or equivalent required; associates or bachelors degree in Cybersecurity Information Technology Computer Science or related field preferred.
Have prior experience leading SOC shifts and mentoring jr. analysts
Must be able to work full time and support SOC operations as needed.
US Citizenship is required.
Must be able to OBTAIN and MAINTAIN a PUBLIC TRUST; candidates must obtain approved adjudication of their PUBLIC TRUST prior to onboarding with Guidehouse. Candidates with an ACTIVE PUBLIC TRUST or SUITABILITY are preferred.
What Would Be Nice To Have:
Experience with tools such as Splunk QRadar Microsoft Sentinel or similar SIEM platforms.
Security certifications such as Security CySA GSEC or equivalent.
Exposure to incident response threat hunting vulnerability management or malware analysis.
Basic scripting or automation skills (Python PowerShell or similar).
Knowledge of frameworks such as MITRE ATT&CK NIST or CIS controls.
What We Offer:
Guidehouse offers a comprehensive total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
Medical Rx Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Parental Leave
401(k) Retirement Plan
Group Term Life and Travel Assistance
Voluntary Life and AD&D Insurance
Health Savings Account Health Care & Dependent Care Flexible Spending Accounts
Transit and Parking Commuter Benefits
Short-Term & Long-Term Disability
Tuition Reimbursement Personal Development Certifications & Learning Opportunities
Employee Referral Program
Corporate Sponsored Events & Community Outreach
annual membership
Employee Assistance Program
Supplemental Benefits via Corestream (Critical Care Hospital Indemnity Accident Insurance Legal Assistance and ID theft protection etc.)
Position may be eligible for a discretionary variable incentive bonus
About Guidehouse
Guidehouse is an Equal Opportunity EmployerProtected Veterans Individuals with Disabilities or any other basis protected by law ordinance or regulation.
Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.
If you have visited our website for information about employment opportunities or to apply for a position and you require an accommodation please contact Guidehouse Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.
All communication regarding recruitment for a Guidehouse position will be sent from Guidehouse email domains including @ or . Correspondence received by an applicant from any other domain should be considered unauthorized and will not be honored by Guidehouse. Note that Guidehouse will never charge a fee or require a money transfer at any stage of the recruitment process and does not collect fees from educational institutions for participation in a recruitment event. Never provide your banking information to a third party purporting to need that information to proceed in the hiring process.
If any person or organization demands money related to a job opportunity with Guidehouse please report the matter to Guidehouses Ethics Hotline. If you want to check the validity of correspondence you have received please contact . Guidehouse is not responsible for losses incurred (monetary or otherwise) from an applicants dealings with unauthorized third parties.
Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.
Required Experience:
IC
About Company
Guidehouse is the only scaled advisory consultancy in the world to fully integrate commercial and public or government businesses within each of our industry segments because complex problems require both perspectives to address and outwit.