Security; SOC Analyst, Secret Clearance Required

Security (SOC) Analyst, Secret Clearance Required

Ultra Violet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the Ultra Violet Cyber security‑as‑code platform combines technology innovation and human expertise to make advanced real‑time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams.

By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, Ultra Violet Cyber provides both managed and custom‑tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. Ultra Violet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India.

$70,000.00/yr - $76,000.00/yr

Make a difference here. The Security Analyst will monitor and analyze security events and alerts reported by the SIEM on a 24x7 basis to identify and investigate suspicious or malicious activity that violates policy. The analyst will work with a large team that rotates 3×12 or 4×12 hour shifts. The position requires a US Government issued Secret Clearance and requires 5 days onsite per week in Herndon, VA.

The analyst will be responsible for analyzing logs and events from any device types that may send logs or events to the SOC in the future, including non‑traditional device feeds such as Human Resources (HR) data, badging information, and physical security devices. The analyst will provide documentation detailing any additional information collected and maintained for each security investigation. All artifacts (e.g., emails, logs, documents, URLs, screenshots) associated with security events and incident investigations will be recorded within the SOC incident and tracking application.

• Active US Secret Security Clearance
• 3+ years of experience in an SOC or NOC environment performing security event monitoring and analysis
• Working knowledge of operating systems (e.g., Windows, OS X, Linux)
• Knowledge of network communications and routing protocols (e.g., TCP, UDP, ICMP, BGP, MPLS) and common internet applications and standards (e.g., SMTP, DNS, DHCP, SQL, HTTP, HTTPS)
• Familiarity with adversarial tactics, techniques, and procedures (TTPs)
• Capability to analyze security logs and events from equipment such as firewalls, IDS/IPS, host‑based intrusion detection/prevention systems, proxy/web filter, vulnerability scans, routers, Net Flow, VPN gateways, server event logs, email and host anti‑virus, desktop security monitoring agents, IP services (DNS, DHCP), NAT devices, MDM, PKI, and cloud security infrastructure (AWS, Azure, Oracle, Salesforce)
• Working knowledge of ticket management systems for documenting security investigations and incidents

• Security+ or equivalent (8570 certification)
• Secret Clearance
• High school diploma

• Certifications:
  
  Security+, GCIH, CEH, or CYSA+
• Experience with Splunk query language
• Experience with IDS/IPS/firewall/security configurations and signature development
• Experience with PCAP analysis
• Experience with Tanium threat response
• Ability to discern legitimate security incidents from non‑incidents, including identification of malicious code and activities
• Experience with event logging systems and SIEM platforms for log collection, correlation, and alerting
• Experience in counter‑measure implementation and deployment in enterprise networks
• Excellent verbal and written communication skills, producing clear incident reports and briefings
• Experience monitoring operational status of monitoring components and escalating outages
• Conceptual understanding of Windows Active Directory

• 401(k) with 100% first 3% match and 50% next 2% match
• Medical, Dental, and Vision Insurance (enrollment on the first day of the month following hire)
• Group Term Life, Short‑Term Disability, Long‑Term Disability
• Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness
• Discretionary Time Off (DTO) Program participation
• 11 Paid Holidays annually

Ultra Violet Cyber welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans.

Ultra Violet Cyber maintains broad salary ranges for its roles to account for variations in knowledge, skills, experience, market conditions, and locations. Candidates are typically placed into the range based on the preceding factors.