Senior SOC Analyst - Top Secret Clearance (SCI Eligible) with Security Clearance

With more than twenty years of securing some of the U.S. Department of Defense and the Intelligence Community's most critical networks, JFL Consulting, LLC provides advanced network security solutions to a range of US Government and US commercial clients. Our cybersecurity operators are experts at assessing and defending mission-critical data and the networks that facilitate their operation. We are focused on delivering advanced products and industry best practices that meet each customer's unique requirements. Visit Job Description: JFL Consulting, LLC is seeking a talented and mission-driven Senior SOC Analyst with Test Access Point (TAP) experience to join our team in Washington, D.C. This role plays a vital part in protecting national security infrastructure by identifying, analyzing, and responding to complex cyber threats. The Senior SOC Analyst will lead efforts in threat detection, packet analysis, and incident response, while mentoring junior analysts and supporting advanced defense strategies in partnership with federal stakeholders. Job Title: Senior SOC Analyst Place of Performance: Washington, D.C. Mandatory Requirements: Active U.S. Top Secret Clearance with SCI eligibility Experience Level: Senior Level (10 + Years) Responsibilities: Install, configure, and maintain network TAPs in production environments, ensuring optimal placement for comprehensive traffic visibility while minimizing network disruption
Perform regular TAP health monitoring, firmware updates, port configuration changes, and proactive maintenance to ensure continuous data capture reliability and compliance with customer infrastructure requirements
Monitor, analyze, and respond to network traffic using TAP-based data capture tools and intrusion detection systems
Perform advanced packet-level analysis and investigate anomalies to identify threats and incidents
Correlate alerts and log data across multiple sources to determine severity and impact
Coordinate incident response activities and ensure proper documentation and escalation procedures
Develop detection rules, custom scripts, and tuning for SIEM and IDS/IPS systems
Mentor junior analysts, provide training on detection techniques, and contribute to SOPs
Support cyber hunt operations, threat modeling, and forensic analysis as needed
Collaborate with government customers, law enforcement, and other partners in secure environments
Maintain strict adherence to classification protocols and data handling procedures
Additional duties as assigned Requirements Education: Bachelor's degree in Cybersecurity, Information Systems, or a related technical field is preferred. Equivalent military or professional experience may be considered in lieu of a degree.
Certificates: Minimum Required Certification: DoD 8140 / 8570 IAT Level II-compliant certification (e.g., Security+ CE, CySA+, GCIH, CISSP).
Preferred Certifications: GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH), GIAC Network Forensic Analyst (GNFA), GIAC Cyber Threat Intelligence (GCTI), Certified Ethical Hacker (CEH), CISSP, or Cisco CyberOps Professional.
Experience: Minimum 5 years of hands-on experience in a SOC or cyber threat analysis role
10+ years of overall experience in cybersecurity or information security environments
Demonstrated expertise in TAP tools, packet capture analysis, and network forensics
Experience in working within a classified government environment
Familiarity with threat intelligence, incident response, and cyber defense frameworks (NIST, MITRE ATT&CK)
Technical Skills: Proficiency in packet analysis tools such as Wireshark, TCPdump, and Suricata
Familiarity with SIEM platforms (e.g., Splunk, QRadar, Elastic)
Experience with EDR/XDR tools, IDS/IPS, and log analysis
Strong scripting skills (Python, PowerShell, Bash) preferred
Comfortable with Windows, Linux, and cloud security monitoring environments
Knowledge: In-depth understanding of cyber kill chain, attacker TTPs, and threat landscape
Strong working knowledge of government cyber policy, RMF, and FedRAMP preferred
Understanding of TAP implementations and encrypted traffic analysis
Soft Skills: Excellent analytical, problem-solving, and critical thinking skills
Strong verbal and written communication skills for technical and executive-level audiences
Ability to work independently and in cross-functional teams
High integrity and attention to detail, especially when handling sensitive data
Competitive Benefits Package Includes: 100% employer-paid medical, dental, and vision for employees and dependents
401(k) with 3% company contribution and immediate vesting
Generous PTO policy (15 vacation, 5 sick, 2 personal days)
Reimbursement for job-related certifications, generous training budget and company provided access to training platforms.
JFL Consulting, LLC is an Equal Opportunity Employer. We do not discriminate against any applicant for employment on any legally recognized basis including, but not limited to: race, religion or creed, color, national origin, sex, age, disability, marital status, sexual orientation, genetic information, veteran status, status with regard to public assistance or any other protected class under federal, state or local statute. It is also the policy of JFL Consulting, LLC to provide reasonable accommodations for qualified individuals with disabilities.