HHS - SOC Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

cFocus Software Incorporated · 1 day ago

HHS - SOC Analyst

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date5+ years exp

cFocus Software seeks a SOC Analyst to join our program supporting the Department of Health and Human Services (HHS). The role involves performing security event triage, incident response, and advanced threat hunting to ensure cybersecurity operations are effectively managed.

ChatbotGovernmentInformation TechnologySoftware
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance Requirednote

Responsibilities

Perform Tier 2/3 security event triage, investigation, and incident response in accordance with HRSA Incident Response Plans, SOC SOPs, and NIST SP 800-61
Analyze alerts from SIEM, EDR, CSPM, WAF, and other SOC tools; determine scope, severity, and impact
Conduct advanced threat hunting, malware analysis, and investigation of Indicators of Compromise (IOCs)
Support containment, eradication, and recovery actions for cybersecurity incidents
Perform digital forensic analysis and preserve evidence following chain-of-custody procedures
Develop and tune SIEM correlation rules, detection logic, dashboards, and reports
Support ransomware, insider threat, phishing, DDoS, and data breach investigations
Produce incident reports, forensic reports, weekly SOC reports, and final incident documentation
Coordinate incident response activities with HRSA leadership, system owners, HHS CSIRC, and CISA
Participate in cyber exercises, tabletop exercises, and after-action reviews
Maintain incident response SLAs for alert triage, containment, reporting, and recovery validation
Support FOIA searches, OGC litigation holds, and OIG investigations as required
Develop scripts and automation to improve SOC efficiency
Maintain and update incident response playbooks, SOPs, and workflows

Qualification

SOC operationsIncident responseSIEM (Splunk)EDR (CrowdStrike)NIST SP 800-61NIST 800-53Malware analysisCloud securityGCIHGCFACISSPCEHCommunication skills

Required

Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
Minimum 5–8 years of experience in SOC operations, incident response, or cybersecurity operations
Hands-on experience with SIEM (Splunk), EDR (CrowdStrike), vulnerability tools, and forensic tools
Strong understanding of NIST SP 800-61, NIST 800-53, FISMA, and federal incident response requirements
Experience analyzing malware, network traffic, logs, and cloud security events
Ability to operate effectively in a 24x7 on-call SOC environment
Strong written and verbal communication skills
Ability to obtain a Public Trust clearance

Preferred

GCIH, GCFA, CISSP, CEH, or Security

Company

cFocus Software Incorporated

twittertwitter
company-logo
cFocus Software automates FedRAMP compliance and develops government chatbots for the Azure Government Cloud, Office 365, and SharePoint.
dateFounded in 2006
location
Largo, Florida, USA
people-size11-50 employees
web-link
https://cfocussoftware.com/

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Manisha Griesinger, MPH, MSc
Program Manager | U.S. EPA Office of the Chief Financial Officer
linkedin
Company data provided by crunchbase