Lead Cyber Security Operations Center (CSOC) Analyst - USDS
Washington D.C., District of Columbia, United States
About the Team
Our Cyber Security Operations Center (CSOC) team is the frontline of defense, responsible for protecting the organization from evolving cyber threats with precision, urgency, and purpose. We’re a mission-driven team that thrives in a high-tempo environment—where curiosity, accountability, and continuous improvement are at the core of everything we do.
We operate a 24/7 global detection and response program, leveraging cutting-edge tools, advanced threat intelligence, and automation to detect, investigate, and respond to threats at scale. But more than the tech, it's our people that make the difference. We’re collaborative, detail-oriented, and deeply committed to safeguarding the business while enabling innovation.
As part of our team, you’ll not only work on meaningful challenges—you’ll shape how Security Operations evolves. From driving detection engineering efforts to mentoring analysts and influencing process improvements, this is where tactical excellence meets strategic impact.
In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.
Tasks and Responsibilities:
- As a Lead SOC Analyst, you’ll play a critical role at the intersection of frontline detection, incident response, and strategic defense engineering. This isn’t a passive monitoring role—you’ll be empowered to lead investigations, shape detection logic, and elevate the SOC’s analytical and operational rigor.
- Lead high-fidelity investigations from triage to root cause, coordinating incident response efforts across threat surfaces including endpoint, cloud, identity, and SaaS.
- Mentor and develop SOC analysts, raising the technical bar through case reviews, scenario-based training, and real-time guidance during critical events.
Our Cyber Security Operations Center (CSOC) team is the frontline of defense, responsible for protecting the organization from evolving cyber threats with precision, urgency, and purpose. We’re a mission-driven team that thrives in a high-tempo environment—where curiosity, accountability, and continuous improvement are at the core of everything we do.
We operate a 24/7 global detection and response program, leveraging cutting-edge tools, advanced threat intelligence, and automation to detect, investigate, and respond to threats at scale. But more than the tech, it's our people that make the difference. We’re collaborative, detail-oriented, and deeply committed to safeguarding the business while enabling innovation.
As part of our team, you’ll not only work on meaningful challenges—you’ll shape how Security Operations evolves. From driving detection engineering efforts to mentoring analysts and influencing process improvements, this is where tactical excellence meets strategic impact.
In order to enhance collaboration and cross-functional partnerships, among other things, at this time, our organization follows a hybrid work schedule that requires employees to work in the office 3 days a week, or as directed by their manager/department. We regularly review our hybrid work model, and the specific requirements may change at any time.
Tasks and Responsibilities:
- As a Lead SOC Analyst, you’ll play a critical role at the intersection of frontline detection, incident response, and strategic defense engineering. This isn’t a passive monitoring role—you’ll be empowered to lead investigations, shape detection logic, and elevate the SOC’s analytical and operational rigor.
- Lead high-fidelity investigations from triage to root cause, coordinating incident response efforts across threat surfaces including endpoint, cloud, identity, and SaaS.
- Mentor and develop SOC analysts, raising the technical bar through case reviews, scenario-based training, and real-time guidance during critical events.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
Analyst Jobs
Incident Response Jobs
Leadership Jobs
Tags: Automation Cloud CSOC Incident response Monitoring SaaS SOC Threat intelligence
Perks/benefits: Team events
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsProduct Security Engineer jobsSenior Cybersecurity Engineer jobsSenior Security Analyst jobsSystems Administrator jobsCybersecurity Editor jobsSenior Information Security Analyst jobsCybersecurity Content Editor jobsCyber Security Specialist jobsInformation Security Manager jobsIT Security Analyst jobsSenior Network Security Engineer jobsChief Information Security Officer jobsSenior Information Security Engineer jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsIT Security Engineer jobsSecurity Specialist jobsSenior Product Security Engineer jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Cyber Security Engineer jobsSecurity Operations Analyst jobsSenior Software Engineer jobsCyber Security Architect jobs
TS/SCI jobsEDR jobsJava jobsCEH jobsEncryption jobsThreat detection jobsSplunk jobsSDLC jobsTop Secret jobsTerraform jobsMalware jobsIDS jobsSOC 2 jobsRMF jobsSQL jobsIPS jobsFinance jobsForensics jobsDocker jobsCompTIA jobsIntrusion detection jobsActive Directory jobsOWASP jobsITIL jobsVPN jobs
Ansible jobsCRISC jobsIT infrastructure jobsTCP/IP jobsClearance Required jobsHIPAA jobsGIAC jobsDoDD 8570 jobsOSCP jobsIndustrial jobsSOAR jobsMITRE ATT&CK jobsBanking jobsCCSP jobsDNS jobsZero Trust jobsSOX jobsData Analytics jobsJira jobsArtificial Intelligence jobsCISO jobsJavaScript jobsNIST 800-53 jobsMachine Learning jobsGCIH jobs