SOC Operations Analyst / Watch-Floor Operations

Job Description

Job Description

Position Summary

We are seeking a Mid-Level Cybersecurity Analyst to join our Security Operations Center (SOC) Watch-Floor Operations Team . The analyst will be responsible for monitoring, detecting, investigating, and responding to cybersecurity events in real time. This role plays a key part in protecting enterprise systems, data, and network infrastructure against malicious activity and vulnerabilities.

The ideal candidate will bring hands-on experience in SIEM tools, network defense, incident response, and digital forensics while working collaboratively with the broader cybersecurity team.

Key Responsibilities

• Monitor enterprise computer networks and systems for security threats, intrusions, and suspicious activity.

• Investigate and respond to security breaches, alerts, and incidents .

• Document security incidents and assess potential damage or impact.

• Perform penetration testing, vulnerability scanning, and other proactive security assessments.

• Install, configure, and maintain firewalls, data encryption programs, and other security software .

• Conduct forensic analysis to confirm intrusions, recover data, and generate forensically sound duplicates of files.

• Decrypt data and prepare technical summaries and reports of findings.

• Perform advanced analysis (timeline, statistical, and file signature analysis) to assess incidents.

• Support Incident Response Teams (IRTs) with real-time cyber defense handling tasks.

• Recommend security best practices, policies, and enhancements to strengthen organizational defenses.

Required Qualifications

• Bachelor’s degree in Computer Science, Information Security, or related field.

• 5+ years of cybersecurity or SOC operations experience.

• Proficiency with Splunk Enterprise Security (Required).

• Experience with Microsoft Sentinel (Preferred).

• Strong technical knowledge of intrusion detection, network defense, and forensic methodologies.

Preferred Certifications (one or more desired):

• GIAC Continuous Monitoring (GMON)

• GIAC Certified Incident Handler (GCIH)

• GIAC Certified Forensic Analyst (GCFA)

• GIAC Certified Intrusion Analyst (GCIA)

• GIAC Network Forensic Analyst (GNFA)

Company Description

Our firm is a small business located in Arlington Virginia. D A LABS is an information technology services firm with numerous active contracts with the Department of Justice and Department of Defense. Founded in 2005, D A LABS has a long history of successful endeavors, and our customers are routinely satisfied with our integration and operational capabilities.

D A LABS provides 10 federal holidays as well as 15 additional PTO days off per year as well as a rich benefits package. Medical/Dental/Vision insurance, and a percentage matching 401K program are available.

Company Description

Our firm is a small business located in Arlington Virginia. D A LABS is an information technology services firm with numerous active contracts with the Department of Justice and Department of Defense. Founded in 2005, D A LABS has a long history of successful endeavors, and our customers are routinely satisfied with our integration and operational capabilities.\r\n\r\nD A LABS provides 10 federal holidays as well as 15 additional PTO days off per year as well as a rich benefits package. Medical/Dental/Vision insurance, and a percentage matching 401K program are available.