Cbo - tier 3 soc analyst

Remote Full-time
cFocus Software seeks a Tier 3 SOC Analyst to join our program supporting the Congressional Budget Office (CBO). This position is remote. This position requires a Public Trust clearance.
Qualifications:
• Active Public Trust clearance
• B.S. Computer Science, Information Technology, or a related field
• 5+ years of SOC Analyst experience
• Expert knowledge of incident response, threat hunting, and detection engineering
• Advanced experience with Microsoft Sentinel (SIEM) and Microsoft Defender tools
• Strong understanding of MITRE ATT&CK framework and adversary tactics
• Experience with digital forensics and malware analysis techniques
• Ability to analyze logs across identity, endpoint, network, and cloud environments
• Strong knowledge of AWS logs (CloudTrail, VPC Flow Logs) and enterprise security tools
• Experience with KQL (Kusto Query Language) and advanced correlation analysis
• Deep understanding of NIST frameworks (800-53, 800-61, 800-92) and Zero Trust principles
• Experience with SOAR platforms and automation (Logic Apps, Sentinel playbooks)
• Experience supporting federal environments and compliance (CUI, FTI, NIST, IRS 1075)
• Experience leading incident response engagements and reporting to leadership
Preferred certifications include but are not limited to
• GCIA, GCIH, CISSP, CEH, or equivalent cybersecurity certifications
• Microsoft Sentinel or Microsoft security platform certifications
• Relevant cloud security certifications (e.g., AWS security)
• Privacy certifications (e.g., CIPP/US, CIPM) where applicable
Duties:
• Lead investigation and response for complex and high-severity security incidents
• Perform advanced threat hunting using Microsoft Sentinel and Defender platforms
• Conduct digital forensics, malware analysis, and root cause analysis (RCA)
• Develop, tune, and optimize detection rules, analytics, and correlation logic
• Map detections and activities to MITRE ATT&CK framework
• Oversee incident lifecycle management (detection through containment, eradication, and recovery)
• Support and improve SOC playbooks, automation workflows, and response procedures
• Provide mentorship and guidance to Tier I and Tier II analysts
• Identify security control gaps and recommend remediation strategies
• Support red team, purple team, and adversary emulation exercises
• Contribute to incident reports, quarterly threat reviews, and executive briefings

Apply tot his job

Apply To this Job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Experienced Remote Data Entry Specialist – Online Typing and Data Management Professional (Work from Home Opportunity)

Remote

Copy Lead

Remote

Experienced Remote Data Entry Specialist – Work from Home Administrative Support Opportunity with arenaflex

Remote

Digital Publishing Assistant Remote Position Available No Experience Required

Remote

Entry Level Product Tester

Remote

Experienced Customer Service Representative – Remote (Florida) for a World-Renowned Aviation Leader

Remote

Machine Learning Engineer

Remote

Full-Time Appointment Setter - Property Management Industry (Remote)

Remote

Software Engineer - Electrical Power Systems

Remote

Bilingual Remote Call Center Representative

Remote
← Back