Title: Lead SOC Analyst
Compensation: $130000.00-$135000.00/Year
Duration: FTE Direct Hire
Location: 100% Remote
Work Requirement: US Citizen, GC Holder, or Authorized to work in the U.S
As a US Lead Security and Operations (SOC) Analyst, you will serve as the bridge between frontline analysts and DART management, helping guide real-time incident response, providing mentorship and quality assurance across shifts, and contributing to process development and strategic improvement. You will lead shift operations, act as an escalation point for complex investigations, and ensure consistent application of incident response processes across global teams.
Scope of Work
Operational Leadership - Coordinate daily DART shift activities to ensure smooth operations and adequate coverage.
- Act as an escalation point for high-priority security alerts and investigations.
- Conduct QA reviews on tickets to ensure accuracy, completeness, and adherence to IR procedures.
- Lead shift handovers, ensuring continuity and communication across regions.
Incident Response - Monitor, query, and triage security alerts using SIEM, EDR, and NDR platforms.
- Perform in-depth investigations into potential threats, applying TTP-based analysis and leveraging internal tools.
- Collaborate with business units and technical teams during incident response to gather context and execute containment or remediation.
- Provide structured documentation and recommendations post-incident.
Team Support & Development - Mentor junior and mid-level analysts during investigations and incident response.
- Support onboarding and continuous training through documentation, coaching, and hands-on guidance.
- Promote a culture of collaboration, accountability, and continuous improvement across shifts.
Process & Tooling Contribution - Help identify tooling or workflow gaps; provide recommendations to the DART Manager for improvements.
- Contribute to the creation and refinement of playbooks and operational procedures.
- Participate in tuning detection content and use-case development in partnership with threat detection teams.
Reporting & Metrics - Assist in tracking key performance indicators (Time to Detect, Time to Resolve, Escalation Ratios, etc.).
- Support reporting functions by summarizing incidents and shift activities in alignment with team OKRs.
What this person will bring:- 5+ years of experience in a cybersecurity analyst role, with at least 2 years in a lead or senior-level capacity.
- Proven hands-on experience with SIEM, EDR, NDR, and DFIR toolsets.
- In-depth understanding of attacker TTPs (MITRE ATT&CK) and strong investigative mindset.
- Experience responding to incidents in cloud environments (AWS, Azure, GCP).
- Excellent written and verbal communication skills, especially in cross-functional and high-pressure scenarios.
- Ability to guide and inspire analysts of varying experience levels.
- Ability to work 9:00AM-5:00PM EST/CST/PST
Additional Expectations:- Participate in a 24/7 on-call rotation
- Demonstrate flexibility and ownership during incidents and surge periods.
- Collaborate closely with the DART Manager on planning, capacity tracking, and continuous team improvement.
Preferred Certifications - At least two of the following (or equivalent experience):
- GIAC Security Expert (GSE)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- CompTIA Cybersecurity Analyst (CySA+)
- OSCP - Offensive Security Certified Professional
- CISSP - Certified Information Systems Security Professional
- Microsoft Certified: Cybersecurity Architect Expert or AWS Certified Security
- CompTIA Security Plus (Sec +)
BENEFITS & PERKS
Our motto is 'Taking Care of Our Own' through 6 pillars of benefits: - HEALTH : Medical, vision, dental and mental health benefits for you and your family, with access to a health care concierge, and Flexible or Health Savings Accounts (FSA or HSA)
- YOURSELF : Free concert tickets, generous paid time off including paid holidays, sick time, and personal days
- WEALTH : 401(k) program with company match, stock reimbursement program
- FAMILY : New parent programs including caregiver leave and baby bonuses, plus fertility, adoption, foster, or surrogacy support
- CAREER : Career and skill development programs with School of Live, tuition reimbursement, and student loan repayment
- OTHERS : Volunteer time off, crowdfunding match
About INSPYR Solutions
Technology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients' business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at inspyrsolutions.com.
INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.
Information collected and processed through your application with INSPYR Solutions (including any job applications you choose to submit) is subject to INSPYR Solutions’ Privacy Policy and INSPYR Solutions’ AI and Automated Employment Decision Tool Policy: https://www.inspyrsolutions.com/policies/. By submitting an application, you are consenting to being contacted by INSPYR Solutions through phone, email, or text.
