Posted today
Secret
$100,000 - $120,000
IT - Security
Washington, DC (On-Site/Office)
Expression is seeking a SOC Analyst to join our team in support of the National
Telecommunications and Information Administration (NTIA) ISCOM Division. In this
role, you will provide cyber threat monitoring, analysis, and incident response support
that strengthens program situational awareness and ensures resilience of critical
federal networks. You will support Tier 1 and Tier 2 SOC operations, contribute to SOC
playbook development, and help mature cyber defense strategies in a mission-focused
environment.
Location and Clearance
● Washington, DC – Onsite
● Active Secret or Top Secret clearance required (U.S. Citizenship required)
Responsibilities
● Monitor, detect, and analyze security threats, risks, and alerts using SOC tools,
and initiate escalation as required.
● Conduct cyber threat analysis and contribute to reports for program
situational awareness.
● Provide Tier 1 response to security incidents and support escalation to Tier 2
during high-volume or critical events.
● Conduct functional incident response teams during shifts, ensuring
accountability and effective resolution.
● Conduct malware analysis (static and dynamic) and assess Indicators of
Compromise (IOCs).
● Perform network forensics and deep packet inspection to investigate
intrusions.
, ● Implement remediation strategies and support recovery activities after
incidents.
● Recommend process improvements and create new detection content to
strengthen SOC operations.
● Conduct proactive monthly threat hunts and provide reports to stakeholders.
● Collaborate with cyber teams for incident escalation, coordinated responses,
and SOC policy/procedure development.
Qualifications
● Bachelor’s degree in Cybersecurity, Computer Science, Information Systems,
or related field; OR equivalent certifications (CompTIA Security+, CISSP, GCIH,
GCIA).
● Minimum of 4 years of experience in security operations, incident response, or
cyber threat analysis.
● Strong knowledge of SOC operations, incident detection, and response
workflows.
● Familiarity with malware analysis, network forensics, and packet-level
inspection.
● Excellent analytical, problem-solving, and communication skills.
Preferred Experience
● Advanced certifications such as CISSP, GCFA, GCIH, GCIA, or equivalent.
● Prior experience supporting NTIA, Department of Commerce, or other federal
civilian agencies.
, ● Hands-on experience with SIEM platforms, IDS/IPS, and endpoint monitoring
tools.
● Familiarity with the NIST Cybersecurity Framework and Risk Management
Framework (RMF).
● Experience developing and maturing SOC playbooks, processes, and detection
capabilities.
Benefits
Expression offers highly competitive salaries, performance-based incentives, and
additional benefits, such as:
● 401k matching
● PPO and HDHP medical/dental/vision insurance
● Education reimbursement up to $10,000/yr
● Complimentary life insurance
● Generous rollover PTO and 11 days of holiday leave
● Onsite gym facility at our HQ office in Washington DC
● Commuter Benefits Plan
● In-office Cold Brew Coffee
About Expression
Founded in 1997 and headquartered in Washington, DC, Expression provides data
fusion, data analytics, AI/ML, software engineering, information technology, and
,electromagnetic spectrum management solutions to the U.S. Department of Defense,
Department of State, and national security community.
Our culture emphasizes creating immediate and sustainable value for our clients
through agile delivery of tailored solutions and constant engagement. We were ranked
#1 on the Washington Technology Fast 50 list of fastest-growing small business
Government contractors and recognized as a Top 20 Big Data Solutions Provider by CIO
Review.
At Expression, we ensure every team member has the tools and opportunities to grow
while working with the newest technologies in the industry. We celebrate milestones,
accomplishments, promotions, and collaborative achievements that make our
workplace engaging and rewarding.
Equal Employment Opportunity Statement
Expression is an Equal Opportunity Employer. We celebrate diversity and are committed
to creating an inclusive environment for all employees. All qualified applicants will
receive consideration for employment without regard to race, color, religion, gender,
gender identity or expression, sexual orientation, national origin, genetics, disability, age,
or veteran status.
Telecommunications and Information Administration (NTIA) ISCOM Division. In this
role, you will provide cyber threat monitoring, analysis, and incident response support
that strengthens program situational awareness and ensures resilience of critical
federal networks. You will support Tier 1 and Tier 2 SOC operations, contribute to SOC
playbook development, and help mature cyber defense strategies in a mission-focused
environment.
Location and Clearance
● Washington, DC – Onsite
● Active Secret or Top Secret clearance required (U.S. Citizenship required)
Responsibilities
● Monitor, detect, and analyze security threats, risks, and alerts using SOC tools,
and initiate escalation as required.
● Conduct cyber threat analysis and contribute to reports for program
situational awareness.
● Provide Tier 1 response to security incidents and support escalation to Tier 2
during high-volume or critical events.
● Conduct functional incident response teams during shifts, ensuring
accountability and effective resolution.
● Conduct malware analysis (static and dynamic) and assess Indicators of
Compromise (IOCs).
● Perform network forensics and deep packet inspection to investigate
intrusions.
, ● Implement remediation strategies and support recovery activities after
incidents.
● Recommend process improvements and create new detection content to
strengthen SOC operations.
● Conduct proactive monthly threat hunts and provide reports to stakeholders.
● Collaborate with cyber teams for incident escalation, coordinated responses,
and SOC policy/procedure development.
Qualifications
● Bachelor’s degree in Cybersecurity, Computer Science, Information Systems,
or related field; OR equivalent certifications (CompTIA Security+, CISSP, GCIH,
GCIA).
● Minimum of 4 years of experience in security operations, incident response, or
cyber threat analysis.
● Strong knowledge of SOC operations, incident detection, and response
workflows.
● Familiarity with malware analysis, network forensics, and packet-level
inspection.
● Excellent analytical, problem-solving, and communication skills.
Preferred Experience
● Advanced certifications such as CISSP, GCFA, GCIH, GCIA, or equivalent.
● Prior experience supporting NTIA, Department of Commerce, or other federal
civilian agencies.
, ● Hands-on experience with SIEM platforms, IDS/IPS, and endpoint monitoring
tools.
● Familiarity with the NIST Cybersecurity Framework and Risk Management
Framework (RMF).
● Experience developing and maturing SOC playbooks, processes, and detection
capabilities.
Benefits
Expression offers highly competitive salaries, performance-based incentives, and
additional benefits, such as:
● 401k matching
● PPO and HDHP medical/dental/vision insurance
● Education reimbursement up to $10,000/yr
● Complimentary life insurance
● Generous rollover PTO and 11 days of holiday leave
● Onsite gym facility at our HQ office in Washington DC
● Commuter Benefits Plan
● In-office Cold Brew Coffee
About Expression
Founded in 1997 and headquartered in Washington, DC, Expression provides data
fusion, data analytics, AI/ML, software engineering, information technology, and
,electromagnetic spectrum management solutions to the U.S. Department of Defense,
Department of State, and national security community.
Our culture emphasizes creating immediate and sustainable value for our clients
through agile delivery of tailored solutions and constant engagement. We were ranked
#1 on the Washington Technology Fast 50 list of fastest-growing small business
Government contractors and recognized as a Top 20 Big Data Solutions Provider by CIO
Review.
At Expression, we ensure every team member has the tools and opportunities to grow
while working with the newest technologies in the industry. We celebrate milestones,
accomplishments, promotions, and collaborative achievements that make our
workplace engaging and rewarding.
Equal Employment Opportunity Statement
Expression is an Equal Opportunity Employer. We celebrate diversity and are committed
to creating an inclusive environment for all employees. All qualified applicants will
receive consideration for employment without regard to race, color, religion, gender,
gender identity or expression, sexual orientation, national origin, genetics, disability, age,
or veteran status.
group id: 10196618
