Security Operations Analyst – Senior

Job Title: Security Operations Analyst – Senior

Location: Washington, DC

(Due to the nature of the work and contract requirements, U.S. Citizenship is required.)

Description:

C3EL is seeking a Senior Security Operations Analyst to support security operations in Washington, DC. This role is responsible for monitoring, detecting, and responding to cybersecurity threats while ensuring the protection of organizational systems and data. The selected candidate will provide advanced analysis and incident response support, as well as guidance to junior analysts.

Responsibilities will include, but not be limited to:

• Monitor security events and alerts using SIEM and other security tools to identify potential threats.


• Analyze and investigate security incidents, including malware, phishing, and unauthorized access attempts.


• Lead incident response activities, including containment, eradication, and recovery efforts.


• Perform threat hunting and proactive analysis to identify emerging risks.


• Correlate data from multiple sources to assess impact and recommend mitigation strategies.


• Develop and maintain incident response procedures and playbooks.


• Document incidents, findings, and remediation actions in accordance with established processes.


• Collaborate with engineering and IT teams to improve security posture and response capabilities.


• Provide mentorship and guidance to junior analysts.

Minimum Qualifications:

• U.S. Citizenship.


• Current IAT Level II or higher certification (e.g., Security+ CE, CySA+, CASP+, or equivalent).


• 6+ years of experience in security operations, incident response, or threat analysis.


• Experience in security operations, incident response, or threat analysis.


• Hands-on experience with SIEM platforms (e.g., Splunk) and security monitoring tools.


• Knowledge of common attack vectors, threat actors, and defensive techniques.


• Experience analyzing logs, network traffic, and endpoint activity.


• Familiarity with operating systems (Windows, Linux) and basic networking concepts.


• Strong analytical, troubleshooting, and communication skills.

Desired Qualifications:

• Experience in a Security Operations Center (SOC) environment.


• Familiarity with threat intelligence platforms and frameworks (e.g., MITRE ATT&CK).


• Experience with endpoint detection and response (EDR) tools.


• Scripting or automation experience (e.g., Python, PowerShell).


• Experience leading incident response efforts or mentoring junior analysts.

Education:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field preferred, OR an Associate’s degree plus ten (10) years of recent specialized experience, OR 12 years of recent specialized experience.