Tier 3 SOC Analyst

CGI

$63K — $139K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years of experience in SOC monitoring, incident response or threat analysis
  • BA/BS degree or equivalent SOC experience (5+ years)
  • Strong understanding of network fundamentals and security tools
  • High proficiency with SIEM, EDR/XDR, and cloud security tools
  • Experience with forensics collections and investigations
  • Excellent verbal and written communication skills
  • Ability to remain effective in a fast-paced, team environment

Responsibilities

  • Monitor and analyze security events and alerts in a 24x7 SOC environment
  • Perform advanced incident response activities including investigation and recovery
  • Conduct deep-dive analysis of alerts to identify threats
  • Analyze logs from firewalls, IDS/IPS, and other network devices
  • Use tools like Splunk and FireEye for threat detection
  • Coordinate incidents and provide detailed documentation
  • Support continuous improvement of SOC processes and detection use cases

Benefits

  • Competitive compensation
  • Comprehensive insurance options
  • 401(k) plan with matching contributions
  • Paid time off for vacation, holidays, and sick time
  • Paid parental leave
  • Learning opportunities and tuition assistance
  • Wellness and well-being programs
Full Job Description
Tier 3 SOC Analyst

Category: Cyber Security

Main location: United States, Tennessee, Knoxville

Position ID:J0426-2680

Employment Type: Full Time

Position Description:

CGI Federal is strengthening its Security Operations Center (SOC) in Knoxville, TN, responding to the increasingly sophisticated landscape of cyber threats. Our analysts are at the forefront of safeguarding federal systems and sensitive data, making their contributions essential to our operations. For senior-level cybersecurity professionals eager to gain practical SOC experience, this role presents an exceptional opportunity. You'll have direct access to state-of-the-art detection and response technologies, along with a clear path toward specialization in areas such as threat intelligence, incident response, automation, and cloud security.
Joining our team means becoming part of a collaborative, mission-driven environment. You'll work alongside seasoned analysts and benefit from comprehensive operational playbooks, ensuring consistency and excellence in service delivery. This setting not only fosters professional growth but also empowers you to make a meaningful impact in the realm of cybersecurity.
This position is located in our Knoxville, TN office; however, a hybrid working model is acceptable.
This role does not require shift work but requires on call supporting 24x7x365 operations.

Your future duties and responsibilities:

. The ideal candidate is capable of operating independently, can quickly acclimate to the environment, and thrives in a fast-paced, mission-critical setting with evolving priorities
. Monitor, analyze, and triage security events and alerts generated by the client's SIEM in a 24x7x365 SOC environment
. Perform advanced incident response activities, including investigation, containment, eradication, and recovery
. Experienced with Forensic, collections, and investigation
. Conduct deep-dive analysis of security alerts to identify malicious activity and potential threats
. Analyze logs and data from various sources including firewalls, IDS/IPS, endpoints, and network devices
. Leverage tools such as Splunk, Tanium, Trellix (McAfee ePO), Zscaler, Microsoft Defender, and FireEye for threat detection and response
. Escalate and coordinate incidents as appropriate, providing detailed documentation and reporting
. Support continuous improvement of SOC processes, detection use cases, and response procedures
. Maintain awareness of emerging threats, vulnerabilities, and attack vectors

Required qualifications to be successful in this role:

. A strong background in cybersecurity, information security, or information technology.
. 5=+ years SOC monitoring, incident response or threat analysis
. BA/BS or equivalent SOC experience (5+ years)
. Deep understanding of network fundamentals, Windows/Linux systems and security tools
. High proficiency with the use SIEM, EDR/XDR, cloud security monitoring tools.
. Deep understanding of network protocols, operating systems (Windows/Linux), malware behavior, and common attack tactics (TTPs)
. Previous experience performing Forensics collections.
. Excellent verbal and written communication skills.
. Ability to remain calm and effective in a fast-paced, team-oriented environment.
. Demonstrated analytical and problem-solving skills.
. US Citizenship, with eligibility to obtain a public trust clearance.

Desired qualifications:

. Proficiency at least one security tool query language (SPL, KQL, XQL)
. Proficiency in at least one programing language, such as Python or JavaScript.
. Certifications such as CISSP, Security+, GCIH, ECIH, or CySA+.

Due to the nature of this government contract, US Citizenship and the ability to obtain a Public Trust clearance is required.

CGI is required by law in some jurisdictions to include a reasonable estimate of the compensation range for this role. The determination of this range includes various factors not limited to skill set, level, experience, relevant training, and licensure and certifications. To support the ability to reward for merit-based performance, CGI typically does not hire individuals at or near the top of the range for their role. Compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range for this role in the U.S. is $63,700.00 - $139,300.00.

CGI Federal's benefits are offered to eligible professionals on their first day of employment to include:
. Competitive compensation
. Comprehensive insurance options
. Matching contributions through the 401(k) plan and the share purchase plan
. Paid time off for vacation, holidays, and sick time
. Paid parental leave
. Learning opportunities and tuition assistance
. Wellness and Well-being programs
#CGIFederalJob
#LI-TM8

Skills:
  • Operational Security
  • Security Analysis
  • Cyber
  • Security Architecture
  • Threat Risk Assessment


Similar Jobs

More Jobs at CGI

More Information Technology Jobs

Find similar Tier 3 SOC Analyst jobs: