Tier 2 SOC Analyst - Contract - Columbia, SC

SUNSHINE ENTERPRISE USA LLC·Remote(United States)
Cybersecurity

WFA Digital Insight

The demand for skilled cybersecurity professionals has grown exponentially, with a 25% increase in job openings over the past year. In this context, the Tier 2 SOC Analyst role at SUNSHINE ENTERPRISE USA LLC presents an exciting opportunity for experienced security experts to work remotely and support enterprise security operations. As the threat landscape evolves, companies are looking for candidates with strong analytical and investigation skills, as well as experience with security event analysis and threat detection. Before applying, candidates should be prepared to demonstrate their expertise in MITRE ATT&CK methodologies and security monitoring experience.

Job Description

About the Role

The Tier 2 SOC Analyst role is a critical component of the Division of Information Security (DIS) team, responsible for supporting enterprise security operations, threat detection, incident response, and cyber investigations. As a key member of the team, the successful candidate will work closely with state agencies to enhance security monitoring capabilities and improve adoption of centralized security services.

The day-to-day responsibilities of the role will include monitoring and analyzing security events, investigating suspicious activity, and performing incident validation, root cause analysis, and impact assessment. The ideal candidate will have a strong understanding of security event analysis, threat detection, and incident response, as well as experience working with SIEM, EDR, IDS/IPS, and threat intelligence platforms.

The DIS team is a dynamic and collaborative group, with a focus on proactive threat hunting and continuous improvement of security monitoring and response capabilities. The successful candidate will have the opportunity to work with a range of stakeholders, including engineering teams, SOC teams, and state agencies, to strengthen security monitoring and response capabilities.

What You Will Do

  • Monitor and analyze security events across SIEM, EDR, IDS/IPS, and threat intelligence platforms
  • Investigate suspicious activity, security incidents, phishing attempts, malware infections, and policy violations
  • Perform incident validation, root cause analysis, impact assessment, and escalation to Tier 3 teams when necessary
  • Create detailed incident reports, timelines, lessons learned, and remediation recommendations
  • Support proactive threat hunting using current threat intelligence and MITRE ATT&CK methodologies
  • Tune detection rules, alert thresholds, and correlation logic to improve SOC effectiveness
  • Collaborate with engineering, SOC teams, and state agencies to strengthen security monitoring and response capabilities
  • Assist with onboarding and support of centralized security services
  • Document SOC procedures, runbooks, troubleshooting guides, and operational processes
  • Serve as a customer-facing security SME supporting agency stakeholders

What We Are Looking For

  • 2+ years of security monitoring experience
  • 2+ years of incident response experience
  • 2+ years of experience with MITRE ATT&CK Framework
  • Experience with security event analysis and threat detection
  • Strong analytical and investigation skills
  • Experience working with SIEM, EDR, IDS/IPS, and threat intelligence platforms
  • Associate degree in Information Technology, Cybersecurity, Information Security, or related field
  • 4+ years of relevant cybersecurity experience in lieu of degree

Nice to Have

  • Palo Alto Cortex XSIAM / Cortex XDR experience
  • Linux administration knowledge
  • Network administration and network design experience
  • Firewall administration experience
  • VPN technologies experience
  • Active Directory administration experience
  • IDS/IPS administration experience
  • Preferred certifications: CISSP, CISA, CISM, CEH, OSCP, GPEN

Benefits and Perks

  • Opportunity to work remotely with a dynamic and collaborative team
  • Professional development and training opportunities
  • Competitive salary and benefits package
  • Flexible working hours and work-life balance
  • Access to cutting-edge security tools and technologies
  • Opportunities for career advancement and growth
  • Recognition and reward for outstanding performance
  • Comprehensive health insurance and wellness programs
  • Generous paid time off and vacation policy
  • Remote work stipend and equipment allowance

How to Stand Out

  • Develop a strong understanding of MITRE ATT&CK methodologies and security monitoring experience to stand out in the application process
  • Showcase your analytical and investigation skills through examples of previous incident response and threat detection experience
  • Highlight your experience working with SIEM, EDR, IDS/IPS, and threat intelligence platforms to demonstrate your technical expertise
  • Be prepared to discuss your experience with proactive threat hunting and continuous improvement of security monitoring and response capabilities
  • Research the company and the role to understand the specific requirements and challenges of the position
  • Prepare examples of your experience with security event analysis, threat detection, and incident response to discuss during the interview process
  • Consider obtaining relevant certifications, such as CISSP, CISA, or CISM, to demonstrate your expertise and commitment to the field

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.