AI Summary
Lead SOC Analyst responsible for guiding real-time incident response, providing mentorship, and contributing to process development. Requires 5+ years of experience in cybersecurity, strong investigative mindset, and excellent communication skills. Must be able to work 9:00AM-5:00PM EST/CST/PST.
Key Highlights
Lead shift operations
Act as an escalation point for complex investigations
Conduct QA reviews on tickets
Key Responsibilities
Operational Leadership
Incident Response
Team Support & Development
Process & Tooling Contribution
Reporting & Metrics
Technical Skills Required
Benefits & Perks
$130000.00-$135000.00/Year
100% Remote
US Citizen, GC Holder, or Authorized to work in the U.S
Health: Medical, vision, dental and mental health benefits
Wealth: 401(k) program with company match
Family: New parent programs including caregiver leave and baby bonuses
Career: Career and skill development programs with School of Live, tuition reimbursement, and student loan repayment
Nice to Have
GIAC Security Expert (GSE)
GIAC Certified Incident Handler (GCIH)
GIAC Certified Intrusion Analyst (GCIA)
CompTIA Cybersecurity Analyst (CySA+)
OSCP - Offensive Security Certified Professional
CISSP - Certified Information Systems Security Professional
Microsoft Certified: Cybersecurity Architect Expert or AWS Certified Security
Job Description
Title: Lead SOC Analyst
Compensation: $130000.00-$135000.00/Year
Duration: FTE Direct Hire
Location: 100% Remote
Work Requirement: US Citizen, GC Holder, or Authorized to work in the U.S
As a US Lead Security and Operations (SOC) Analyst, you will serve as the bridge between frontline analysts and DART management, helping guide real-time incident response, providing mentorship and quality assurance across shifts, and contributing to process development and strategic improvement. You will lead shift operations, act as an escalation point for complex investigations, and ensure consistent application of incident response processes across global teams.
Scope of Work
Operational Leadership
- Coordinate daily DART shift activities to ensure smooth operations and adequate coverage.
- Act as an escalation point for high-priority security alerts and investigations.
- Conduct QA reviews on tickets to ensure accuracy, completeness, and adherence to IR procedures.
- Lead shift handovers, ensuring continuity and communication across regions.
- Monitor, query, and triage security alerts using SIEM, EDR, and NDR platforms.
- Perform in-depth investigations into potential threats, applying TTP-based analysis and leveraging internal tools.
- Collaborate with business units and technical teams during incident response to gather context and execute containment or remediation.
- Provide structured documentation and recommendations post-incident.
- Mentor junior and mid-level analysts during investigations and incident response.
- Support onboarding and continuous training through documentation, coaching, and hands-on guidance.
- Promote a culture of collaboration, accountability, and continuous improvement across shifts.
- Help identify tooling or workflow gaps; provide recommendations to the DART Manager for improvements.
- Contribute to the creation and refinement of playbooks and operational procedures.
- Participate in tuning detection content and use-case development in partnership with threat detection teams.
Interested in remote work opportunities in Development & Programming? Discover Development & Programming Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
- Assist in tracking key performance indicators (Time to Detect, Time to Resolve, Escalation Ratios, etc.).
- Support reporting functions by summarizing incidents and shift activities in alignment with team OKRs.
- 5+ years of experience in a cybersecurity analyst role, with at least 2 years in a lead or senior-level capacity.
- Proven hands-on experience with SIEM, EDR, NDR, and DFIR toolsets.
- In-depth understanding of attacker TTPs (MITRE ATT&CK) and strong investigative mindset.
- Experience responding to incidents in cloud environments (AWS, Azure, GCP).
- Excellent written and verbal communication skills, especially in cross-functional and high-pressure scenarios.
- Ability to guide and inspire analysts of varying experience levels.
- Ability to work 9:00AM-5:00PM EST/CST/PST
- Participate in a 24/7 on-call rotation
- Demonstrate flexibility and ownership during incidents and surge periods.
- Collaborate closely with the DART Manager on planning, capacity tracking, and continuous team improvement.
- At least two of the following (or equivalent experience):
- GIAC Security Expert (GSE)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- CompTIA Cybersecurity Analyst (CySA+)
- OSCP - Offensive Security Certified Professional
- CISSP - Certified Information Systems Security Professional
- Microsoft Certified: Cybersecurity Architect Expert or AWS Certified Security
- CompTIA Security Plus (Sec +)
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
Our motto is 'Taking Care of Our Own' through 6 pillars of benefits:
- HEALTH : Medical, vision, dental and mental health benefits for you and your family, with access to a health care concierge, and Flexible or Health Savings Accounts (FSA or HSA)
- YOURSELF : Free concert tickets, generous paid time off including paid holidays, sick time, and personal days
- WEALTH : 401(k) program with company match, stock reimbursement program
- FAMILY : New parent programs including caregiver leave and baby bonuses, plus fertility, adoption, foster, or surrogacy support
- CAREER : Career and skill development programs with School of Live, tuition reimbursement, and student loan repayment
- OTHERS : Volunteer time off, crowdfunding match
Technology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients' business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at inspyrsolutions.com.
INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.
Information collected and processed through your application with INSPYR Solutions (including any job applications you choose to submit) is subject to INSPYR Solutions’ Privacy Policy and INSPYR Solutions’ AI and Automated Employment Decision Tool Policy: https://www.inspyrsolutions.com/policies/. By submitting an application, you are consenting to being contacted by INSPYR Solutions through phone, email, or text.
Similar Jobs
Explore other opportunities that match your interests
Visa Sponsorship
Relocation
Remote
Job Type
Full-time
Experience Level
Mid-Senior level
Lumenalta
United State
Visa Sponsorship
Relocation
Remote
Job Type
Full-time
Experience Level
Entry level
Buyers Edge Platform
United State
Strategic HRIS Manager
••••••
••••••
••••••
Job Type
••••••
Experience Level
••••••
Huntress
United State