Senior SOC Analyst - Top Secret Clearance (SCI Eligible)

With more than twenty years of securing some of the U.S. Department of Defense and the Intelligence Community's most critical networks, JFL Consulting, LLC provides advanced network security solutions to a range of US Government and US commercial clients. Our cybersecurity operators are experts at assessing and defending mission-critical data and the networks that facilitate their operation. We are focused on delivering advanced products and industry best practices that meet each customer's unique requirements. Visit

Job Description:

JFL Consulting, LLC is seeking a talented and mission-driven Senior SOC Analyst with Test Access Point (TAP) experience to join our team in Washington, D.C. This role plays a vital part in protecting national security infrastructure by identifying, analyzing, and responding to complex cyber threats. The Senior SOC Analyst will lead efforts in threat detection, packet analysis, and incident response, while mentoring junior analysts and supporting advanced defense strategies in partnership with federal stakeholders.

Job Title: Senior SOC Analyst

Place of Performance: Washington, D.C.

Mandatory Requirements: Active U.S. Top Secret Clearance with SCI eligibility

Experience Level: Senior Level (10 + Years)

Responsibilities:

• Install, configure, and maintain network TAPs in production environments, ensuring optimal placement for comprehensive traffic visibility while minimizing network disruption
• Perform regular TAP health monitoring, firmware updates, port configuration changes, and proactive maintenance to ensure continuous data capture reliability and compliance with customer infrastructure requirements
• Monitor, analyze, and respond to network traffic using TAP-based data capture tools and intrusion detection systems
• Perform advanced packet-level analysis and investigate anomalies to identify threats and incidents
• Correlate alerts and log data across multiple sources to determine severity and impact
• Coordinate incident response activities and ensure proper documentation and escalation procedures
• Develop detection rules, custom scripts, and tuning for SIEM and IDS/IPS systems
• Mentor junior analysts, provide training on detection techniques, and contribute to SOPs
• Support cyber hunt operations, threat modeling, and forensic analysis as needed
• Collaborate with government customers, law enforcement, and other partners in secure environments
• Maintain strict adherence to classification protocols and data handling procedures
• Additional duties as assigned

Requirements

Education:

• Bachelor's degree in Cybersecurity, Information Systems, or a related technical field is preferred. Equivalent military or professional experience may be considered in lieu of a degree.

Certificates:

• Minimum Required Certification: DoD 8140 / 8570 IAT Level II-compliant certification (e.g., Security+ CE, CySA+, GCIH, CISSP).
• Preferred Certifications: GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH), GIAC Network Forensic Analyst (GNFA), GIAC Cyber Threat Intelligence (GCTI), Certified Ethical Hacker (CEH), CISSP, or Cisco CyberOps Professional.

Experience:

• Minimum 5 years of hands-on experience in a SOC or cyber threat analysis role
• 10+ years of overall experience in cybersecurity or information security environments
• Demonstrated expertise in TAP tools, packet capture analysis, and network forensics
• Experience in working within a classified government environment
• Familiarity with threat intelligence, incident response, and cyber defense frameworks (NIST, MITRE ATT&CK)

Technical Skills:

• Proficiency in packet analysis tools such as Wireshark, TCPdump, and Suricata
• Familiarity with SIEM platforms (e.g., Splunk, QRadar, Elastic)
• Experience with EDR/XDR tools, IDS/IPS, and log analysis
• Strong scripting skills (Python, PowerShell, Bash) preferred
• Comfortable with Windows, Linux, and cloud security monitoring environments

Knowledge:

• In-depth understanding of cyber kill chain, attacker TTPs, and threat landscape
• Strong working knowledge of government cyber policy, RMF, and FedRAMP preferred
• Understanding of TAP implementations and encrypted traffic analysis

Soft Skills:

• Excellent analytical, problem-solving, and critical thinking skills
• Strong verbal and written communication skills for technical and executive-level audiences
• Ability to work independently and in cross-functional teams
• High integrity and attention to detail, especially when handling sensitive data

Competitive Benefits Package Includes:

• 100% employer-paid medical, dental, and vision for employees and dependents
• 401(k) with 3% company contribution and immediate vesting
• Generous PTO policy (15 vacation, 5 sick, 2 personal days)
• Reimbursement for job-related certifications, generous training budget and company provided access to training platforms.

JFL Consulting, LLC is an Equal Opportunity Employer.

We do not discriminate against any applicant for employment on any legally recognized basis including, but not limited to: race, religion or creed, color, national origin, sex, age, disability, marital status, sexual orientation, genetic information, veteran status, status with regard to public assistance or any other protected class under federal, state or local statute. It is also the policy of JFL Consulting, LLC to provide reasonable accommodations for qualified individuals with disabilities.