Security Operations Center Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

RISCPoint · 5 hours ago

Security Operations Center Analyst

positionUnited States
timeFull-time
remoteRemote
seniorityEntry, Mid Level
date2+ years exp

RISCPoint Advisory Group is a company that provides tailored cybersecurity solutions for organizations of all sizes. They are seeking a Security Operations Center Analyst responsible for maintaining the security and compliance posture of FedRAMP-authorized systems through continuous monitoring, vulnerability management, and incident response activities.

ComplianceCyber SecurityInformation Technology
badNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Utilize and maintain automated security tooling for monitoring and response within customer environments
On-call rotation to provide rapid response to potential security incidents
Incident response notification and communications
Conduct routine vulnerability assessments and provide remediation guidance
Perform weekly vulnerability scans using approved scanning tools
Analyze vulnerability scan results and coordinate remediation efforts
Monitor security alerts from SIEM, IDS/IPS, and other security tools
Track security metrics and maintain compliance dashboards
Maintain FedRAMP Continuous Monitoring compliance including Cloud Security Posture Management
Conduct quarterly threat hunting exercises
Assist with monthly ConMon reporting deliverables
Maintain Plan of Action & Milestones (POA&M) documentation
Support 3PAO assessments and audits
Configure and maintain security monitoring platforms
Tune security tools to reduce false positives
Develop custom detection rules and alerts
Create security dashboards and reports

Qualification

Security OperationsIncident ResponseVulnerability ManagementAWS GovCloudSIEM PlatformsCloud SecurityComplianceScriptingAutomationTechnical SkillsSoft Skills

Required

2-4 years in security operations, incident response, or SOC analyst role
1-2 years working in AWS, particularly AWS GovCloud
Experience with vulnerability management and remediation
Hands-on experience with SIEM platforms and security monitoring tools
Experience analyzing security logs and investigating incidents
Security+ or equivalent DoD 8570 IAT Level II certification
Security Tools: Tenable Nessus, Qualys, Rapid7, other vulnerability scanners
SIEM Platforms: Google SecOps, Splunk ES, Azure Sentinel, etc
IDS/IPS: Suricata, Zeek, Snort
Cloud Security: AWS GuardDuty, AWS Security Hub, CloudTrail, VPC Flow Logs, AWS IAM
Endpoint Security: CrowdStrike, Carbon Black, Microsoft Defender
Incident Response: Experience with IR frameworks (NIST 800-61)
Compliance: NIST 800-53 Rev. 5 controls, FedRAMP
Scripting, Automation, IaC: Python, Ansible, AWS CLI, Terraform

Preferred

One of: ISC2 CISSP/CCSP, GIAC GCIH
One of: AWS Security Specialist, AWS Certified Solutions Architect – Associate

Benefits

Company Paid Health Insurance
Company Paid Dental Insurance
Company Paid Vision Insurance
401k with 3% Company Contribution (Traditional & Roth Options)
Generous Vacation Policy

Company

RISCPoint

twittertwitter
company-logo
Security and compliance, made human.
dateFounded in 2018
location
Cleveland, Ohio, USA
people-size11-50 employees
web-link
https://riscpoint.com

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Jacob Nix
Chief Growth Officer
linkedin

Recent News

PR Newswire
RISCPoint Announces the definitive CMMC Guide in Partnership with Wiz
2025-08-26
PR Newswire
RISCPoint adds industry veteran William "Sport" Smith
2025-08-19
PR Newswire
RISCPoint Appoints Matt Drewyor as Chief Executive Officer
2025-08-07
Company data provided by crunchbase