1816 - SOC Incident Response Analyst - Hybrid - Active Secret Required

Other Jobs To Apply

<b>ABOUT US</b><br><br>Rollout Systems works with a wide spectrum of talent to establish an atmosphere that stimulates creativity, constant progress, and achievement. We believe in empowerment for success and providing the tools to do the best job for our customers. Our corporate values are transparent; being open and honest with each other. <b>Come and join our dynamic team!</b><br><br><b>JOB DESCRIPTION</b><br><br>Seeking a highly motivated and driven <b>SOC Incident Response Analyst</b> to work <b>Hybrid -</b> <b>3 Days Per Week Onsite</b> supporting enterprise IT for our War-fighter customer who upholds America's status as the "Land of the Free" every day, at work, or at play.<br><br><b>RESPONSIBILITIES</b><br><br><ul><li>Monitor and triage alerts from SIEM, EDR, IDS/IPS, and other security tools to identify suspicious activity.</li><li>Perform initial investigation and classification of security incidents; escalate when necessary.</li><li>Coordinate and orchestrate incident response efforts: containment, eradication, recovery, and documentation.</li><li>Support digital forensic investigations, including evidence collection, preservation, and basic analysis.</li><li>Provide regular status updates when conducting forensics.</li><li>Provide a written report at the conclusion of each forensics examination.</li><li>Prepare and present forensic findings in the form of briefings and/or reports, to government leaders and managers, as required.</li><li>Review logs and telemetry from endpoints, firewalls, servers, and cloud platforms to identify indicators of compromise (IOCs).</li><li>Collaborate with IT and security teams to apply mitigation actions such as patching, blocking IPs, and adjusting configurations.</li><li>Participate in post-incident reviews (PIRs) and help implement improvements to detection and response capabilities.</li><li>Contribute to the development and maintenance of SOC playbooks, runbooks, and response procedures.</li><li>Assist with Open-Source Intelligence (OSINT) monitoring and IOC enrichment.</li><li>Continuously improve knowledge of cybersecurity frameworks, threat actor TTPs (MITRE ATT&CK), and forensic methodologies</li><li>Handle sensitive file transfers IAW DoD Policies and procedures </li><li>Query the classified network for any new vulnerabilities or weaknesses discovered by higher level commands that affect the status of the unclassified network</li></ul><br><br><b>REQUIREMENTS</b> <br><br><ul><li>5 years of foundational knowledge of cybersecurity concepts, such as incident handling lifecycle, threat intelligence, and basic to intermediate forensics.</li><li>Experience working with security tools (SIEM, EDR, SOAR, threat intel feeds) and basic incident response workflows.</li><li>Hands-on experience with SIEM (e.g., MDE, Splunk, QRadar, ArcSight), EDR (e.g., CrowdStrike, Defender, SentinelOne), and basic SOAR concepts.</li><li>Experience with incident response tooling, digital forensics, and evidence handling.</li><li>Understanding of networking fundamentals (TCP/IP, DNS, HTTP/S, VPNs, firewalls).</li><li>Strong analytical and problem-solving skills with a structured, methodical approach.</li><li>Excellent written and verbal communication; ability to produce clear incident reports, documentation and manuals.</li><li>Ability to work in a fast-paced environment and participate in on-call rotations (as needed).</li><li>Commitment to continuous learning and professional growth in cybersecurity.</li></ul><br><br><b>CERTIFICATION(s) (One of the Following:)</b><br><br><ul><li>CompTIA Security+ CE </li><li>Certified Ethical Hacker (CEH)</li><li>SANS GCIH, GIAC GCIA or Equivalent</li></ul><br><br><b>SECURITY CLEARANCE</b> <br><br><ul><li><b>Active Secret Security Clearance</b></li></ul><br><br><b>EDUCATION</b><br><ul><li>BS or BA degree in Computer Science, Cybersecurity or related field. Allowable Substitution: 6 years of related experience or 4 years of related experience with an AA/AS degree</li></ul><br><br>#00033<br><br><b>BENEFITS</b><br><br><ul><li>Generous PTO/Leave Package</li><li>11 Paid Federal Holidays</li><li>Medical, Dental, & Vision Plan</li><li>Short-Term & Long-Term Disability</li><li>Accidental Death & Dismemberment</li><li>401K Retirement & Matching</li><li>Profit Sharing Plan</li><li>Free Training & Development Subscription</li><li>Tuition Assistance Program</li><li>Direct Deposit</li></ul><br><br><b>OUR CULTURE</b><br><br>Built upon open communications and teamwork principles that keep a talented, tenured workforce in place; consistent quality services; proactive, out-of-the-box thinking, and the highest ethical values. <br><br><b>COMPENSATION</b><br><br>The likely salary range for this position is $120,000 - $160,000 annually. This is not, however, a guarantee of total compensation or salary or any other compensation offered. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Rollout Systems offers a variety of benefits including health insurance with domestic partner coverage, company-funded health savings account and life and disability insurances, 401(k) matching, 401(k) profit-sharing, education assistance, paid time off, and paid holidays. The specific programs and options available to an employee may vary depending on date of hire, location, and schedule type.<br><br><b>EEO & AFFIRMATIVE ACTION</b><br><br>Rollout Systems provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.<br><br>This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. We are an Equal Employment Opportunity (EEO) and Affirmative Action employer and abide by the requirements of the EEOC and the Title 41 CFR 60-300.5(a) and 60-741.5(a), which prohibits discrimination against qualified individuals based on protected veterans and individuals with disabilities.<br><br><b>Please NO Third-Party Agencies: Rollout Systems does not accept unsolicited resumes or profiles from recruiters or employment agencies. </b>

Back to blog

Common Interview Questions And Answers

1. HOW DO YOU PLAN YOUR DAY?

This is what this question poses: When do you focus and start working seriously? What are the hours you work optimally? Are you a night owl? A morning bird? Remote teams can be made up of people working on different shifts and around the world, so you won't necessarily be stuck in the 9-5 schedule if it's not for you...

2. HOW DO YOU USE THE DIFFERENT COMMUNICATION TOOLS IN DIFFERENT SITUATIONS?

When you're working on a remote team, there's no way to chat in the hallway between meetings or catch up on the latest project during an office carpool. Therefore, virtual communication will be absolutely essential to get your work done...

3. WHAT IS "WORKING REMOTE" REALLY FOR YOU?

Many people want to work remotely because of the flexibility it allows. You can work anywhere and at any time of the day...

4. WHAT DO YOU NEED IN YOUR PHYSICAL WORKSPACE TO SUCCEED IN YOUR WORK?

With this question, companies are looking to see what equipment they may need to provide you with and to verify how aware you are of what remote working could mean for you physically and logistically...

5. HOW DO YOU PROCESS INFORMATION?

Several years ago, I was working in a team to plan a big event. My supervisor made us all work as a team before the big day. One of our activities has been to find out how each of us processes information...

6. HOW DO YOU MANAGE THE CALENDAR AND THE PROGRAM? WHICH APPLICATIONS / SYSTEM DO YOU USE?

Or you may receive even more specific questions, such as: What's on your calendar? Do you plan blocks of time to do certain types of work? Do you have an open calendar that everyone can see?...

7. HOW DO YOU ORGANIZE FILES, LINKS, AND TABS ON YOUR COMPUTER?

Just like your schedule, how you track files and other information is very important. After all, everything is digital!...

8. HOW TO PRIORITIZE WORK?

The day I watched Marie Forleo's film separating the important from the urgent, my life changed. Not all remote jobs start fast, but most of them are...

9. HOW DO YOU PREPARE FOR A MEETING AND PREPARE A MEETING? WHAT DO YOU SEE HAPPENING DURING THE MEETING?

Just as communication is essential when working remotely, so is organization. Because you won't have those opportunities in the elevator or a casual conversation in the lunchroom, you should take advantage of the little time you have in a video or phone conference...

10. HOW DO YOU USE TECHNOLOGY ON A DAILY BASIS, IN YOUR WORK AND FOR YOUR PLEASURE?

This is a great question because it shows your comfort level with technology, which is very important for a remote worker because you will be working with technology over time...