← all jobs

SOC Analyst - Incident Response, MITRE ATT&CK - REMOTE (W2 ONLY)

Work from home Full-time role Hiring

Job Description:

  • **Only W2 resumes are accepted

Work Location: Role is 100% Remote Candidate location: No SC residency required. Open to nationwide candidates. The position will work as a Tier 2 SOC Analyst for the Division of Information Security. This role will focus on supporting security monitoring, threat detection, security incident response and security investigations. Engaging directly with state agencies to promote, support, and improve adoption of centralized security services is a key focus. The engagement is expected to be needed for 12 months with the possibility of extension. DAILY DUTIES / RESPONSIBILITIES: PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL-TIME REMOTE (ON-SITE AS NEEDED). · · Continuously review and correlate security event data across SIEM, EDR, IDS/IPS, and threat intelligence sources to identify complex attack patterns, emerging threats, and security incidents. · Perform deep-dive analysis of suspicious activity, validate incidents, determine root cause and impact, and escalate critical incidents with detailed context to Tier 3 as required. · Create detailed incident reports, timelines, and post-incident summaries; contribute to lessons-learned documentation and recommendations for remediation and preventative measures. · Investigate user-reported phishing, malware infections, and potential policy violations; advise users and internal/external teams on containment and recovery actions. · Recommend updates to SOC playbooks and workflows based on real-world INVESTIGATIONS, fine-tune detection rules. Alert thresholds, and correlation logic to reduce false positives and improve threat coverage. · Collaborate with engineering teams to ensure monitoring tools are properly configured and tuned. Integrate new threat intelligence feeds into workflows and proactively hunt for threats using up-to date tactics, techniques, and procedures (TTPs) · Serve as a customer-facing SME, “selling” the value of DIS services by demonstrating capabilities and resolving issues. · Document processes, runbooks, and troubleshooting steps related to SOC operations. · Coordinate with engineering, SOC, and agency staff as needed to meet goals. · Other duties as needed. Required Skills · 2+ Years of Experience with Security Monitoring and Incident Response. · 2+ Years of Experience with MITRE ATT&CK framework. · 2+ Years of Experience with dashboard creation and reporting · Associate’s degree in an information technology or information security related field · Four years of relevant work experience may be substituted in lieu of education Preferred Skills · Experience with the Palo Alto Cortex XSIAM/XDR platform. · Knowledge of Linux, network administration and network design. · Experience in administration of firewalls, VPN technology, Active Directory, Intrusion Detection/Prevention systems. · Candidate is local to Columbia, SC or surrounding city in South Carolina · CISSP, CISA, CISO or equivalent advanced security certification. · Additional relevant certifications (e.g., CEH, OSCP, GPEN). Vendor certifications related to information security

More open positions

Information Security Analyst - Remote

Work from home Full-time role

ERP Security Analyst – CAPPS IAM, Security Specialist

Work from home Full-time role

Security Analyst-IAM / IGA Administrator (Microsoft Entra)

Work from home Full-time role

Hardware Security and Vulnerability Analyst - Remote

Work from home Full-time role

Security Analyst

Work from home Full-time role

SOC Analyst I (Remote)

Work from home Full-time role

Registered Nurse RN Per Diem PRN - $50.11 per hour

Work from home Full-time role

Technical / Data Enclave Lead | Federal Secure Data Environment

Work from home Full-time role

Remote Customer Support Representative – Streaming Services & Digital Entertainment – careerzynith

Work from home Full-time role

Clinical Supervisor (Southwest)

Work from home Full-time role

Entry-Level - Remote Sales Representative

Work from home Full-time role

United States EHS Consultant

Work from home Full-time role

Automotive Account Executive - OEM Sales (Remote)

Work from home Full-time role

Associate Director Global Medical Communications

Work from home Full-time role

[Remote] Director of Business Development

Work from home Full-time role

Experienced Customer Experience Specialist | Remote Opportunity for Hospitality Professionals

Work from home Full-time role

Senior Administrator - HRIS Workday

Work from home Full-time role

Higher Education Account Executive

Work from home Full-time role

Chat Support Specialist – Remote Customer Experience Champion for careerzynith’s Digital Services (Work‑From‑Home)

Work from home Full-time role

Remote Data Entry & Transcription Specialist – Precision Data Management, Audio‑to‑Text Conversion, and Quality Assurance at careerzynith

Work from home Full-time role

Technical Support Specialist II - Governance and Ops (Remote Eligible - Costa Rica)

Work from home Full-time role