DecisionPoint Corporation
IT Security Operations Analyst - Mid
DecisionPoint Corporation, Washington, District of Columbia, us, 20022
Overview
The Government Publishing Office (GPO) SecDevOps program provides advanced security, development, and operations support to safeguard federal information systems and infrastructure. This initiative integrates cybersecurity best practices with agile development and IT operations to ensure continuous security, compliance, and resilience across GPO's enterprise IT services. The mission is to protect and enable GPO's digital transformation by delivering secure, scalable, and reliable IT services in alignment with federal cybersecurity mandates and operational excellence standards.
Location:
Remote - candidates located in the Washington, DC metropolitan area (DMV) are highly preferred.
Clearance Requirement:
Must be able to obtain and maintain a Public Trust clearance.
Note:
By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid.
Duties & Responsibilities IT Security Operations Analyst - Mid
will:
Serve as a front-line incident handler, performing real-time triage of security alerts from Microsoft Defender, Sentinel, Trellix, and other EDR/SIEM tools.
Analyze logs, network traffic, and security events to validate incidents and identify root causes.
Lead initial incident response actions and escalate to senior analysts or SOC leads per established playbooks. Assist in the assessment, implementation, and maintenance of security measures for GPO systems in alignment with NIST SP 800-37 and SP 800-53.
Maintain and enhance incident response playbooks, escalation procedures, and detection logic to improve SOC efficiency.
Participate in operational reviews and contribute to incident after-action reports and mitigation recommendations.
Coordinate with ITOPS, ISSM, and engineering teams during threat response activities.
Create and maintain security control test results, asset inventories, and remediation documentation in GRC repositories.
Contribute to RMF artifact generation such as POA&Ms, data flow diagrams, and patch/upgrade schedules.
Ensure all documentation reflects the latest changes to production environments and security tools.
Qualifications
Minimum Experience:
4 years of experience in a SOC, cybersecurity operations, or security analysis role.
Minimum Education:
Bachelor’s degree in Computer Science, Information Systems, or related disciplines (or equivalent experience).
Technical Knowledge:
Familiarity with RMF processes and security documentation. Hands-on experience with SIEM and EDR platforms such as Microsoft Defender, Defender for Endpoint, Microsoft Sentinel, Trellix, or Rapid7.
Federal experience:
Preferred.
Certifications (preferred):
CompTIA Security+, CySA+, Certified SOC Analyst (CSA), ITIL v4 Foundation.
Our Equal Employment Opportunity Policy
EEO and Affirmative Action Policy:
DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable EEO/AA laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
Pay Transparency Policy:
In accordance with Presidential Executive Order 13665, the company will not discharge or discriminate against employees or applicants for disclosing pay information. However, employees who have access to compensation information must not disclose it to individuals who do not have access, except as allowed by law or policy.
Authorization to Share Resume and Personal Information:
By applying, you authorize sharing your resume and personal information with subsidiaries, affiliates, and teaming partners for consideration for this position and similar roles. You may be asked to complete related employment documents if pre-employment discussions occur.
#J-18808-Ljbffr
Location:
Remote - candidates located in the Washington, DC metropolitan area (DMV) are highly preferred.
Clearance Requirement:
Must be able to obtain and maintain a Public Trust clearance.
Note:
By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid.
Duties & Responsibilities IT Security Operations Analyst - Mid
will:
Serve as a front-line incident handler, performing real-time triage of security alerts from Microsoft Defender, Sentinel, Trellix, and other EDR/SIEM tools.
Analyze logs, network traffic, and security events to validate incidents and identify root causes.
Lead initial incident response actions and escalate to senior analysts or SOC leads per established playbooks. Assist in the assessment, implementation, and maintenance of security measures for GPO systems in alignment with NIST SP 800-37 and SP 800-53.
Maintain and enhance incident response playbooks, escalation procedures, and detection logic to improve SOC efficiency.
Participate in operational reviews and contribute to incident after-action reports and mitigation recommendations.
Coordinate with ITOPS, ISSM, and engineering teams during threat response activities.
Create and maintain security control test results, asset inventories, and remediation documentation in GRC repositories.
Contribute to RMF artifact generation such as POA&Ms, data flow diagrams, and patch/upgrade schedules.
Ensure all documentation reflects the latest changes to production environments and security tools.
Qualifications
Minimum Experience:
4 years of experience in a SOC, cybersecurity operations, or security analysis role.
Minimum Education:
Bachelor’s degree in Computer Science, Information Systems, or related disciplines (or equivalent experience).
Technical Knowledge:
Familiarity with RMF processes and security documentation. Hands-on experience with SIEM and EDR platforms such as Microsoft Defender, Defender for Endpoint, Microsoft Sentinel, Trellix, or Rapid7.
Federal experience:
Preferred.
Certifications (preferred):
CompTIA Security+, CySA+, Certified SOC Analyst (CSA), ITIL v4 Foundation.
Our Equal Employment Opportunity Policy
EEO and Affirmative Action Policy:
DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable EEO/AA laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
Pay Transparency Policy:
In accordance with Presidential Executive Order 13665, the company will not discharge or discriminate against employees or applicants for disclosing pay information. However, employees who have access to compensation information must not disclose it to individuals who do not have access, except as allowed by law or policy.
Authorization to Share Resume and Personal Information:
By applying, you authorize sharing your resume and personal information with subsidiaries, affiliates, and teaming partners for consideration for this position and similar roles. You may be asked to complete related employment documents if pre-employment discussions occur.
#J-18808-Ljbffr