SOC Analyst (Contract) - Cybersecurity Operations

RYMTECH® is a premier MSP/MSSP specializing in advanced SOC architecture and Incident Response (CSIRT). We go beyond traditional monitoring by employing a threat-informed defense model and mapping all operations to the MITRE ATT&CK® framework. Our mission is to empower organizations with resilient defense mechanisms through Cyber Threat Intelligence, proactive Threat Hunting, and adversary emulation.

We are seeking a high-caliber SOC Analyst for a remote, contract-based engagement. You will be responsible for the end-to-end detection and response lifecycle. This is not a "passive monitoring" role; you will actively hunt for threats, analyze complex attack vectors, and help evolve our clients' security posture.

• Advanced Monitoring: Analyze and correlate security alerts across SIEM, EDR, and Cloud environments (Azure/AWS/GCP).
• Proactive Threat Hunting: Execute hypothesis-driven hunts to identify stealthy adversaries using MITRE ATT&CK methodologies.
• Incident Response: Lead Tier 2 and Tier 3 investigations, providing containment and remediation strategies.
• Intelligence Integration: Operationalize Threat Intelligence (CTI) feeds to create high-fidelity detection rules.
• Adversary Emulation: Assist in mapping defense rules to threat models to ensure robust detection of the latest TTPs.
• Reporting: Deliver technical deep-dive reports and executive summaries on security incidents and trends.

• Experience: 3+ years of direct experience in a SOC or Incident Response environment.
• Technical Mastery: Deep understanding of SIEM/SOAR (Splunk, Sentinel, or Elastic) and EDR/XDR (CrowdStrike, SentinelOne).
• Framework Knowledge: Proven ability to map threats and countermeasures to the MITRE (ATT&CK/D3FEND) framework.
• Analytical Rigor: Strong problem-solving skills with the ability to "think like an attacker."
• Communication: Fluent English with the ability to present technical findings to both technical and non-technical stakeholders.
• Certifications: CompTIA CySA+, GIAC (GCIH/GCIA), CISSP, or equivalent are highly preferred.

As a contract-based role in the US market, we offer a highly competitive hourly rate reflecting the specialized nature of cybersecurity operations:

• Hourly Rate: $50.00 – $75.00 USD per hour, depending on experience, technical certifications, and specialized skills.
• Payment Terms: Bi-weekly payments via direct deposit or preferred wire platform.
• Tax Form: 1099 Contractor (Independent Contractor).
  

At RYMTECH®, we treat our contractors as core members of our elite team. To support your growth and well-being, this contract includes:

• Professional Development Fund: Up to $1,500 USD annually reimbursed for approved cybersecurity certifications (SANS, OffSec, ISC2, PECB, CompTIA) or lab subscriptions (HTB, Blue Team Labs).
• Tech & Home Office Stipend: A one-time $500 USD bonus after 90 days to upgrade your remote work setup or hardware.
• Flexible Scheduling: While we require coverage during peak hours, we focus on results over micromanagement, allowing for flexible task management.
• Performance-Based Bonuses: Quarterly performance bonuses based on detection accuracy, MTTR (Mean Time to Respond) efficiency, and contribution to the threat intelligence knowledge base of RYMTECH® ISAC/CTI Tactical Unit.
• Access to Elite Labs: Full access to RYMTECH’s internal adversary emulation and malware analysis labs for continuous skill sharpening.