Security Operation Center (SOC) Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

General Dynamics Information Technology · 2 days ago

Security Operation Center (SOC) Analyst

positionPortland, OR
timeFull-time
remoteOnsite
seniorityMid Level
money$85K/yr - $100K/yr
date3+ years exp

General Dynamics Information Technology is a global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. The SOC Analyst’s primary function is to research relevant threat intelligence and provide real-time cyber-security monitoring to secure clients’ missions and anticipate future threats.

Artificial Intelligence (AI)Cloud ComputingConsultingCyber SecurityInformation Technology
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Own your career as a Cyber Security Analyst Senior at GDIT
Research relevant threat intelligence from open source, unclassified, and classified resources, providing analysis through research and correlating actionable information against log results
Provide 24×7×365 real-time cyber-security real-time monitoring of government systems
Apply intelligence, aggregate, prioritize, target, communicate and escalate monitoring and analysis of potential threat activity targeting the enterprise
Lead efforts in Incident Handling (Detection, Analysis, Triage), Hunting (anomalous pattern detection and content management) and Malware Analysis
Analyze information technology security events to discern events that qualify as legitimate security incidents as opposed to non-incidents
Perform security event triage, incident investigation, implementing countermeasures, and conducting incident response
Be knowledgeable and have hands-on experience with a Security Information and Event Monitoring (SIEM) platforms and/or log management systems that perform log collection, analysis, correlation, and alerting
Analyze security events (windows event logs, network traffic, IDS events for malicious intent)
Track activities within various Security Operation workflows
Have a working knowledge of the various operating systems (e.g. Windows, OS X, Linux, etc.) commonly deployed in enterprise networks
Have a conceptual understanding of Windows Active Directory and a working knowledge of network communications and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g. SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.)
Identify and implement counter-measures or mitigating controls for deployment and implementation in the enterprise network environment
Utilize technologies such as Network Threat Hunting, Big Data Analytics, Endpoint Threat Detection and Response, SIEM, workflow and ticketing, and Intrusion Detection System
Have knowledge of NIST SP 800-53 Rev. 5, 800-37, 800-171, FedRAMP, FISMA, and NIST AI RMF standards

Qualification

Cyber DefenseIncident HandlingLog ManagementThreat DetectionSIEM PlatformsMalware AnalysisNetwork Threat HuntingBig Data AnalyticsEndpoint Threat DetectionAnalytical SkillsOperating SystemsNIST StandardsOrganizational SkillsAttention to DetailCritical Thinking

Required

Clearance Level Must Currently Possess: Secret
Clearance Level Must Be Able To Obtain: Top Secret
3 + years of related experience
US Citizenship Required: Yes
Must have strong analytical and technical skills in computer network defense operations, ability to lead efforts in Incident Handling (Detection, Analysis, Triage), Hunting (anomalous pattern detection and content management) and Malware Analysis
Experience and ability to with analyzing information technology security events to discern events that qualify as legitimate security incidents as opposed to non-incidents. This includes security event triage, incident investigation, implementing countermeasures, and conducting incident response
Must be knowledgeable and have hands-on experience with a Security Information and Event Monitoring (SIEM) platforms and/or log management systems that perform log collection, analysis, correlation, and alerting
Strong logical/critical thinking abilities, especially analyzing security events (windows event logs, network traffic, IDS events for malicious intent)
Excellent organizational and attention to details in tracking activities within various Security Operation workflows
A working knowledge of the various operating systems (e.g. Windows, OS X, Linux, etc.) commonly deployed in enterprise networks, a conceptual understanding of Windows Active Directory is also required, and a working knowledge of network communications and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g. SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.)
Experience with the identification and implementation of counter-measures or mitigating controls for deployment and implementation in the enterprise network environment
Experience with one or more of the following technologies Network Threat Hunting, Big Data Analytics, Endpoint Threat Detection and Response, SIEM, workflow and ticketing, and Intrusion Detection System
Knowledge of NIST SP 800-53 Rev. 5, 800-37, 800-171, FedRAMP, FISMA, and NIST AI RMF standards
Current Secret, Top Secret, DOE L, or DOE Q clearance required
US citizenship required

Preferred

CISSP a plus
2-4 years related experience
Prior performance in roles such as ISSO or ISSM

Benefits

401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays
Variety of medical plan options, some with Health Savings Accounts
Dental plan options
A vision plan
A 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match
Full flex work weeks where possible
Variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave
GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees
Short and long-term disability benefits
Life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance

Company

General Dynamics Information Technology

twittertwittertwitter
Glassdoor3.9
company-logo
General Dynamics Information Technology is an IT consulting company that specializes in cyber security, AI, and quantum computing. It is a sub-organization of General Dynamics.
dateFounded in 1999
location
Falls Church, Virginia, USA
people-size10001+ employees
web-link
https://www.gdit.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Paul Nedzbala
Senior Vice President
linkedin
leader-logo
Ben Buckley
Vice President and General Manager
linkedin

Recent News

PRWeb
Parallel Works Deploys Mission-Critical Weather Forecasting to the Cloud, Expanding Real-Time Predictions at Scale
2026-01-13
PR Newswire
GDIT Named AWS Global Defense Consulting Partner of the Year
2026-01-03
PR Newswire
GDIT Awarded $285 Million Virginia Cybersecurity Services Contract
2025-12-16
Company data provided by crunchbase