Job Requirements
Remote Washington, DC
Clearance Unspecified Polygraph not specified
Mid Level Career (5+ yrs experience)
$110,000 - $150,000
Job Description
Shifts Available:
Shift 1: 7:00 AM - 3:30 PM
Shift 2: 3:00 PM - 11:30 PM
Shift 3: 11:00 PM - 7:30 AM
Bachelor’s degree + 8 years of intrusion detection experience
7+ years of hands-on intrusion detection across security technologies (IDS/IPS, HIPS, WAN monitoring)
5+ years performing senior-level log analysis (SIEM, Splunk, server logs, network traffic)
2+ years of leadership experience as a SOC or cybersecurity shift lead
Strong experience with Splunk SIEM (including advanced query creation)
Experience analyzing:
Firewall ACLs
Snort-based IDS events
PCAPs and packet analysis
Web server logs and raw log data
One required certification (minimum):
GCIA, ECSA, GPPA, GCED, SSCP, or CISSP
Splunk Fundamentals I & II certification
Plusses:
Deep threat intelligence background (TTP analysis, threat actor tracking)
Experience briefing executive leadership
Advanced scripting or automation skills (e.g., Python, advanced GREP)
Experience in high-security federal or government SOC environments
Familiarity with 24x7x365 enterprise SOC operations
Responsibilities
Insight Global is seeking a Shift Lead (Master Level Cyber Defense Analyst / Intrusion Detection Team) for a top cybersecurity and federal services client. This candidate will lead a team within a 24/7 Security Operations Center, overseeing real-time threat detection, analysis, and response. They will combine deep technical expertise with leadership capabilities to guide analysts, assess cyber threats, and deliver actionable intelligence to stakeholders. The ideal candidate thrives in a fast-paced, high-stakes environment and brings strong experience with SIEM tools, intrusion detection technologies, and advanced cyber threat analysis.
Lead and mentor a team of intrusion analysts on overnight SOC shift
Monitor, detect, and respond to cyber threats in real time
Correlate threat intelligence with network/system activity
Analyze intrusion signatures and attacker TTPs
Produce actionable intelligence reports for incident response teams
Conduct deep-dive investigations using logs, SIEM, and packet data
Provide security posture assessments and recommendations
Deliver briefings and reports to leadership on threat landscape
Shift 1: 7:00 AM - 3:30 PM
Shift 2: 3:00 PM - 11:30 PM
Shift 3: 11:00 PM - 7:30 AM
Bachelor’s degree + 8 years of intrusion detection experience
7+ years of hands-on intrusion detection across security technologies (IDS/IPS, HIPS, WAN monitoring)
5+ years performing senior-level log analysis (SIEM, Splunk, server logs, network traffic)
2+ years of leadership experience as a SOC or cybersecurity shift lead
Strong experience with Splunk SIEM (including advanced query creation)
Experience analyzing:
Firewall ACLs
Snort-based IDS events
PCAPs and packet analysis
Web server logs and raw log data
One required certification (minimum):
GCIA, ECSA, GPPA, GCED, SSCP, or CISSP
Splunk Fundamentals I & II certification
Plusses:
Deep threat intelligence background (TTP analysis, threat actor tracking)
Experience briefing executive leadership
Advanced scripting or automation skills (e.g., Python, advanced GREP)
Experience in high-security federal or government SOC environments
Familiarity with 24x7x365 enterprise SOC operations
Responsibilities
Insight Global is seeking a Shift Lead (Master Level Cyber Defense Analyst / Intrusion Detection Team) for a top cybersecurity and federal services client. This candidate will lead a team within a 24/7 Security Operations Center, overseeing real-time threat detection, analysis, and response. They will combine deep technical expertise with leadership capabilities to guide analysts, assess cyber threats, and deliver actionable intelligence to stakeholders. The ideal candidate thrives in a fast-paced, high-stakes environment and brings strong experience with SIEM tools, intrusion detection technologies, and advanced cyber threat analysis.
Lead and mentor a team of intrusion analysts on overnight SOC shift
Monitor, detect, and respond to cyber threats in real time
Correlate threat intelligence with network/system activity
Analyze intrusion signatures and attacker TTPs
Produce actionable intelligence reports for incident response teams
Conduct deep-dive investigations using logs, SIEM, and packet data
Provide security posture assessments and recommendations
Deliver briefings and reports to leadership on threat landscape
group id: 10112344
Defining Company Culture