DTS
Overview
David T. Scott & Associates, LLC (DTS) is a Service-Disabled Veteran Owned Small Business that serves public- and private-sector clients. DTS excels at helping our clients respond to daunting challenges related to program management/governance, strategic planning/organizational advancement, business process efficiency and learning enhancement. Our associates have executed strategic planning, Program Management Office, organizational effectiveness, cyber security, business process improvement, training and program support contracts. Our staff is comprised of seasoned experts with exceptional military, civilian and private sector experience. Base pay range :
$90,000.00/yr - $110,000.00/yr Senior Security Operations Center (SOC) Analyst
to support advanced cyber security operations, continuous monitoring, and strategic threat detection initiatives. This individual is a key player in our Microsoft-focused security ecosystem and serves as a subject matter expert in threat investigation, response, and mitigation. The Senior SOC Analyst provides technical leadership within the team, mentors junior analysts, and ensures proactive response to security incidents. Responsibilities
Monitor network activity, alerts, and incidents; conduct initial investigations using Microsoft Sentinel and other SIEM tools. Lead incident response and escalate security events to appropriate stakeholders as needed. Configure and optimize client environments using Microsoft Defender Security Center, Microsoft Sentinel, Log Analytics Workspace, data connectors, analytic rules, and logic apps. Review, deploy, and tune analytic rules and detection logic based on threat intelligence and client needs. Develop and refine custom Kusto Query Language (KQL) queries for proactive threat hunting and incident analysis. Implement and test security automation and assist in the deployment and migration of devices across client environments. Review automated responses for accuracy and effectiveness; recommend improvements as needed. Perform initial remediation activities on affected devices in response to detected threats. Support SOC reporting functions through the creation of evidence artifacts, biweekly reports, and compliance documentation. Lead continuous monitoring efforts to ensure the effectiveness of security controls across Microsoft environments. Stay current on cybersecurity trends, evolving attack techniques, and updates across Microsoft 365 security products. Update environment configurations in response to new threats, vulnerabilities, and observed incidents. Required Qualifications
Bachelors Degree in Cybersecurity, Information Security, or related field. 5+ years of experience in a Security Operations Center or equivalent cybersecurity role. Strong expertise in Microsoft Sentinel, Microsoft Defender Suite, and Kusto Query Language (KQL). Experience writing, tuning, and managing detection rules and threat response playbooks. Experience managing or mentoring junior team members or leading incident response efforts. Deep understanding of cloud security models, Microsoft 365 security posture, and endpoint protection best practices. Position has light management responsibilities. Must possess the ability to coach and train team members when necessary. Preferred Qualifications
Proficiency in Kusto Query Language (KQL), with the ability to write and optimize custom queries for threat detection and investigation. Experience working within Microsoft security and management portals, including Microsoft Defender, Endpoint Manager, Sentinel, and the broader Azure stack. Microsoft certifications such as SC-200, SC-300, or SC-100 preferred. Location & Compensation
Location: In-office Arlington, VA Compensation: $90,000-$110,000 depending on experience EEO Statement
Qualified applicants will receive consideration for employment without regard to their race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, pregnancy, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, height, weight, or any other legally protected status or characteristics. All DTS offers of employment are contingent upon the ability to complete and successfully adjudicate a background investigation. Background investigation components can vary dependent upon specific assignment and/or level of US government security clearance held. #J-18808-Ljbffr
David T. Scott & Associates, LLC (DTS) is a Service-Disabled Veteran Owned Small Business that serves public- and private-sector clients. DTS excels at helping our clients respond to daunting challenges related to program management/governance, strategic planning/organizational advancement, business process efficiency and learning enhancement. Our associates have executed strategic planning, Program Management Office, organizational effectiveness, cyber security, business process improvement, training and program support contracts. Our staff is comprised of seasoned experts with exceptional military, civilian and private sector experience. Base pay range :
$90,000.00/yr - $110,000.00/yr Senior Security Operations Center (SOC) Analyst
to support advanced cyber security operations, continuous monitoring, and strategic threat detection initiatives. This individual is a key player in our Microsoft-focused security ecosystem and serves as a subject matter expert in threat investigation, response, and mitigation. The Senior SOC Analyst provides technical leadership within the team, mentors junior analysts, and ensures proactive response to security incidents. Responsibilities
Monitor network activity, alerts, and incidents; conduct initial investigations using Microsoft Sentinel and other SIEM tools. Lead incident response and escalate security events to appropriate stakeholders as needed. Configure and optimize client environments using Microsoft Defender Security Center, Microsoft Sentinel, Log Analytics Workspace, data connectors, analytic rules, and logic apps. Review, deploy, and tune analytic rules and detection logic based on threat intelligence and client needs. Develop and refine custom Kusto Query Language (KQL) queries for proactive threat hunting and incident analysis. Implement and test security automation and assist in the deployment and migration of devices across client environments. Review automated responses for accuracy and effectiveness; recommend improvements as needed. Perform initial remediation activities on affected devices in response to detected threats. Support SOC reporting functions through the creation of evidence artifacts, biweekly reports, and compliance documentation. Lead continuous monitoring efforts to ensure the effectiveness of security controls across Microsoft environments. Stay current on cybersecurity trends, evolving attack techniques, and updates across Microsoft 365 security products. Update environment configurations in response to new threats, vulnerabilities, and observed incidents. Required Qualifications
Bachelors Degree in Cybersecurity, Information Security, or related field. 5+ years of experience in a Security Operations Center or equivalent cybersecurity role. Strong expertise in Microsoft Sentinel, Microsoft Defender Suite, and Kusto Query Language (KQL). Experience writing, tuning, and managing detection rules and threat response playbooks. Experience managing or mentoring junior team members or leading incident response efforts. Deep understanding of cloud security models, Microsoft 365 security posture, and endpoint protection best practices. Position has light management responsibilities. Must possess the ability to coach and train team members when necessary. Preferred Qualifications
Proficiency in Kusto Query Language (KQL), with the ability to write and optimize custom queries for threat detection and investigation. Experience working within Microsoft security and management portals, including Microsoft Defender, Endpoint Manager, Sentinel, and the broader Azure stack. Microsoft certifications such as SC-200, SC-300, or SC-100 preferred. Location & Compensation
Location: In-office Arlington, VA Compensation: $90,000-$110,000 depending on experience EEO Statement
Qualified applicants will receive consideration for employment without regard to their race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, pregnancy, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, height, weight, or any other legally protected status or characteristics. All DTS offers of employment are contingent upon the ability to complete and successfully adjudicate a background investigation. Background investigation components can vary dependent upon specific assignment and/or level of US government security clearance held. #J-18808-Ljbffr