Security Operation Center (SOC) Analyst Lead
Company: GD Information Technology
Location: Portland
Posted on: April 1, 2026
|
|
|
Job Description:
Type of Requisition: Regular Clearance Level Must Currently
Possess: Secret Clearance Level Must Be Able to Obtain: Top Secret
Public Trust/Other Required: None Job Family: Cyber and IT Risk
Management Job Qualifications: Skills: Cyber Defense, Incident
Handling, IT Leadership, SIEM Tools Certifications: Certified
Information Systems Security Professional (CISSP) | International
Information System Security Certification Consortium (ISC2) -
International Information System Security Certification Consortium
(ISC2) Experience: 5 years of related experience US Citizenship
Required: Yes Job Description: SOC Analyst Lead: Lead SOC Analyst’s
primary function is to research relevant threat intelligence from
open source, unclassified, and classified resources, providing
analysis through research and correlating actionable information
against log results. This position is responsible for leading the
team to provide 24×7×365 real-time cyber-security real-time
monitoring of government systems, apply intelligence, aggregate,
prioritize, target, communicate and escalate monitoring and
analysis of potential threat activity targeting the enterprise.
Additionally, this candidate must be familiar with intrusion
detection systems, intrusion analysis, security information event
management platforms, endpoint threat detection tools, and security
operations ticket management. Performance shall include: • Must
have strong analytical and technical skills in computer network
defense operations, ability to lead efforts in Incident Handling
(Detection, Analysis, Triage), Hunting (anomalous pattern detection
and content management) and Malware Analysis • Experience and
ability to with analyzing information technology security events to
discern events that qualify as legitimate security incidents as
opposed to non-incidents. This includes security event triage,
incident investigation, implementing countermeasures, and
conducting incident response. • Must be knowledgeable and have
hands-on experience with a Security Information and Event
Monitoring (SIEM) platforms and/or log management systems that
perform log collection, analysis, correlation, and alerting •
Strong logical/critical thinking abilities, especially analyzing
security events (windows event logs, network traffic, IDS events
for malicious intent) • Excellent organizational and attention to
details in tracking activities within various Security Operation
workflows • A working knowledge of the various operating systems
(e.g. Windows, OS X, Linux, etc.) commonly deployed in enterprise
networks, a conceptual understanding of Windows Active Directory is
also required, and a working knowledge of network communications
and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.) and
common internet applications and standards (e.g. SMTP, DNS, DHCP,
SQL, HTTP, HTTPS, etc.) • Experience with the identification and
implementation of counter-measures or mitigating controls for
deployment and implementation in the enterprise network environment
• Experience with one or more of the following technologies Network
Threat Hunting, Big Data Analytics, Endpoint Threat Detection and
Response, SIEM, workflow and ticketing, and Intrusion Detection
System • Knowledge of NIST SP 800-53 Rev. 5, 800-37, 800-171,
FedRAMP, FISMA, and NIST AI RMF standards. Experience: • 5-8 years
related experience • Prior performance in roles such as ISSO, ISSM,
or SOC analyst Certifications: • CISSP preferred Security
Clearance: • Current Secret, Top Secret, DOE L, or DOE Q clearance
required • US citizenship required GDIT IS YOUR PLACE: 401K with
company match Comprehensive health and wellness packages Internal
mobility team dedicated to helping you own your career Professional
growth opportunities including paid education and certifications
Cutting-edge technology you can learn from Rest and recharge with
paid vacation and holidays The likely salary range for this
position is $85,093 - $115,000. This is not, however, a guarantee
of compensation or salary. Rather, salary will be set based on
experience, geographic location and possibly contractual
requirements and could fall outside of this range. Scheduled Weekly
Hours: 40 Travel Required: Less than 10% T elecommuting Options:
Onsite Work Location: USA OR Portland Additional Work Locations:
USA WA Vancouver - 5411 N.E. Highway 99 (WAC056) Total Rewards at
GDIT: Our benefits package for all US-based employees includes a
variety of medical plan options, some with Health Savings Accounts,
dental plan options, a vision plan, and a 401(k) plan offering the
ability to contribute both pre and post-tax dollars up to the IRS
annual limits and receive a company match. To encourage work/life
balance, GDIT offers employees full flex work weeks where possible
and a variety of paid time off plans, including vacation, sick and
personal time, holidays, paid parental, military, bereavement and
jury duty leave. GDIT typically provides new employees with 15 days
of paid leave per calendar year to be used for vacations, personal
business, and illness and an additional 10 paid holidays per year.
Paid leave and paid holidays are prorated based on the employee’s
date of hire. The GDIT Paid Family Leave program provides a total
of up to 160 hours of paid leave in a rolling 12 month period for
eligible employees. To ensure our employees are able to protect
their income, other offerings such as short and long-term
disability benefits, life, accidental death and dismemberment,
personal accident, critical illness and business travel and
accident insurance are provided or available. We regularly review
our Total Rewards package to ensure our offerings are competitive
and reflect what our employees have told us they value most. We are
GDIT. A global technology and professional services company that
delivers consulting, technology and mission services to every major
agency across the U.S. government, defense and intelligence
community. Our 30,000 experts extract the power of technology to
create immediate value and deliver solutions at the edge of
innovation. We operate across 50 countries worldwide, offering
leading capabilities in digital modernization, AI/ML, Cloud, Cyber
and application development. Together with our clients, we strive
to create a safer, smarter world by harnessing the power of deep
expertise and advanced technology. Join our Talent Community to
stay up to date on our career opportunities and events at
gdit.com/tc . Equal Opportunity Employer / Individuals with
Disabilities / Protected Veterans
Keywords: GD Information Technology, Vancouver , Security Operation Center (SOC) Analyst Lead, IT / Software / Systems , Portland, Washington
