Security Operations Analyst
Fantom Corporation, Washington, District of Columbia, United States
Fantom Corporation is a mission-focused organization supporting critical programs across the defense and intelligence community. We partner with our customers to deliver high-impact technical solutions while fostering a culture built on trust, expertise, and long-term career growth.
We are seeking a Senior Security Operations Analyst to support day-to-day cybersecurity operations by monitoring, analyzing, and responding to security events across the enterprise. This role is critical in maintaining situational awareness, identifying threats, and ensuring timely incident response within a dynamic environment.
The ideal candidate has strong experience in SOC operations, threat analysis, and SIEM tools, with a proactive approach to identifying and mitigating security risks.
Responsibilities
Monitor and analyze security logs, alerts, and events from SIEM and other security tools
Perform real-time threat detection, investigation, and incident response
Conduct threat analysis and identify indicators of compromise (IOCs)
Execute daily security monitoring activities and generate reports on findings
Support incident response efforts, including documentation and post-incident analysis
Evaluate the effectiveness of existing security controls and recommend improvements
Assist in developing and tuning detection rules and alerting mechanisms
Stay current on emerging threats, vulnerabilities, and attack techniques
Collaborate with cybersecurity and IT teams to enhance overall security posture
Required Qualifications
Must have an active Public Trust security Clearance
Must be willing and able to work fully onsite at the location listed in this posting
6+ years of experience in a Security Operations Center (SOC) or similar cybersecurity role
Hands‑on experience with SIEM tools and log analysis
Strong understanding of incident response processes and procedures
Experience with endpoint and network security tools
Knowledge of federal cybersecurity standards and best practices
Preferred Certifications
CompTIA Security+
CySA+ (Cybersecurity Analyst)
CEH (Certified Ethical Hacker) or equivalent
#CJ
#J-18808-Ljbffr
We are seeking a Senior Security Operations Analyst to support day-to-day cybersecurity operations by monitoring, analyzing, and responding to security events across the enterprise. This role is critical in maintaining situational awareness, identifying threats, and ensuring timely incident response within a dynamic environment.
The ideal candidate has strong experience in SOC operations, threat analysis, and SIEM tools, with a proactive approach to identifying and mitigating security risks.
Responsibilities
Monitor and analyze security logs, alerts, and events from SIEM and other security tools
Perform real-time threat detection, investigation, and incident response
Conduct threat analysis and identify indicators of compromise (IOCs)
Execute daily security monitoring activities and generate reports on findings
Support incident response efforts, including documentation and post-incident analysis
Evaluate the effectiveness of existing security controls and recommend improvements
Assist in developing and tuning detection rules and alerting mechanisms
Stay current on emerging threats, vulnerabilities, and attack techniques
Collaborate with cybersecurity and IT teams to enhance overall security posture
Required Qualifications
Must have an active Public Trust security Clearance
Must be willing and able to work fully onsite at the location listed in this posting
6+ years of experience in a Security Operations Center (SOC) or similar cybersecurity role
Hands‑on experience with SIEM tools and log analysis
Strong understanding of incident response processes and procedures
Experience with endpoint and network security tools
Knowledge of federal cybersecurity standards and best practices
Preferred Certifications
CompTIA Security+
CySA+ (Cybersecurity Analyst)
CEH (Certified Ethical Hacker) or equivalent
#CJ
#J-18808-Ljbffr