Enable job alerts via email!
SOC Analyst (Tier 2/3) – Splunk / Endpoint Security
Blue Cyber
Washington (District of Columbia)
Hybrid
USD 90,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player is seeking a skilled SOC Analyst (Tier 2) to enhance its security operations team. This hybrid role focuses on analyzing threat activity and investigating endpoint security events during evening shifts. Ideal candidates will thrive in fast-paced environments, enjoy resolving security incidents, and aspire to grow into leadership roles. The position offers a supportive team-oriented environment with opportunities for mentorship and professional development. If you're passionate about cybersecurity and eager to make an impact, this role is perfect for you.
Qualifications
- 2-5 years in SOC or cybersecurity operations role required.
- Proficiency in Splunk and endpoint security tools essential.
Responsibilities
- Monitor and triage Splunk notables for investigation.
- Produce actionable end-of-shift reports and present findings.
Skills
Education
Tools
Job description
3 days ago Be among the first 25 applicants
Get AI-powered advice on this job and more exclusive features.
SOC Analyst (Tier 2) – Splunk / Endpoint Security
Evening Shift | 3:00 PM – 11:00 PM EST
Salary: $90,000
Blue Cyber is seeking a skilled SOC Analyst (Tier 2) to join our security operations team. This hybrid role involves analyzing threat activity, triaging Splunk notables, and investigating endpoint security events during the evening shift. Success involves identifying threats, correlating behaviors, and contributing insights to daily reports.
This position is ideal for cybersecurity professionals who thrive in fast-paced environments, enjoy resolving security incidents, and are interested in growth into leadership or shift-lead roles.
- Monitor and triage Splunk notables, identifying events for further investigation
- Use tools like Microsoft Defender, Apex, and Cisco Firepower to assess and contain threats
- Analyze Sysmon logs and endpoint activity to understand process behavior and root causes
- Produce clear, actionable end-of-shift reports and present findings during daily turnover calls
- Support team coordination and incident documentation as a backup to the shift lead
- Stay updated on cyber threat trends and suggest process improvements
Required:
- 2–5 years in a SOC, incident response, or cybersecurity operations role
- Proficiency in Splunk, endpoint security tools, and investigative workflows
- Familiarity with Sysmon logging, process trees, and threat behavior analysis
- Ability to perform IOC hunting, detect lateral movement, and respond to behavioral anomalies
- Excellent communication skills, including incident reporting
Preferred:
- Certifications such as CompTIA Security+, Network+, or Splunk
- Knowledge of the MITRE ATT&CK framework
- Experience working second shift or independently during off-hours
- Hybrid work model: 4 days on-site, 1 day remote
- Team-oriented environment with growth and mentorship opportunities
- U.S. work authorization; security clearance is a plus but not mandatory
- Seniority level: Mid-Senior level
- Employment type: Full-time
- Job function: Information Technology
- Industries: IT Services and IT Consulting
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
Senior SOC Security Analyst / US Citizenship / 100% ONSITE
VISUAL SOFT, INC
Washington
Hybrid
USD 70,000 - 110,000
Senior SOC Security Analyst - US Citizenship - 100% ONSITE
VISUAL SOFT, INC
Washington
Hybrid
USD 80,000 - 110,000
SOC Analyst with Security Clearance
NasTech Global, Inc.
Arlington
On-site
USD 70,000 - 100,000
Senior Splunk Engineer
Omm IT Solutions
Annapolis
On-site
USD 80,000 - 120,000
job faster
