Select Page

Operations Security Advisor I / SOC Analst

Location: 100% onsite [Port of San Antonio]
Employment Type: Full-Time
Work Schedule: Day Shift / Operational Coverage Support
Telework: Not Authorized
Travel Requirement: Minimal to None
Clearance Requirement: Secret Clearance Eligible (Active Secret Clearance Preferred)

Position Overview

Seeking a motivated and mission-focused Operations Security Advisor I / SOC Analyst to support cybersecurity monitoring and defensive cyber operations within a federal government enterprise environment. This role serves as a frontline Security Operations Center (SOC) analyst responsible for monitoring enterprise security tools, identifying suspicious activity, performing initial incident triage, and escalating cybersecurity events in accordance with established federal security procedures and operational playbooks.

The ideal candidate will possess foundational cybersecurity knowledge, strong analytical and troubleshooting skills, and the ability to operate effectively within a structured SOC environment supporting enterprise-level systems, applications, cloud environments, and network infrastructures.

This position is ideal for early-career cybersecurity professionals seeking hands-on experience supporting federal cyber defense operations and incident response activities.

Key Responsibilities

  • Monitor, analyze, and triage cybersecurity alerts generated from Security Information and Event Management (SIEM), Endpoint Detection & Response (EDR), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), firewalls, and enterprise monitoring tools.
  • Conduct initial investigations involving suspicious network traffic, malware activity, phishing attempts, unauthorized access attempts, anomalous user behavior, and potential indicators of compromise (IOCs).
  • Review and correlate logs from multiple security platforms including Windows Event Logs, Linux systems, Active Directory, VPN solutions, cloud environments, and endpoint security tools.
  • Document investigative findings, incident timelines, escalation actions, and remediation recommendations within ticketing and case management systems.
  • Escalate confirmed or high-risk cybersecurity incidents to Tier II/Tier III analysts, Incident Response teams, engineers, or government stakeholders.
  • Support continuous monitoring requirements aligned with federal cybersecurity standards and operational procedures.
  • Follow established SOC playbooks, incident response procedures, escalation matrices, and operational checklists to ensure consistent and auditable incident handling.
  • Assist with identifying recurring threats, vulnerability trends, suspicious patterns, and operational gaps impacting enterprise security posture.
  • Participate in cybersecurity operations briefings, shift turnover meetings, operational reporting, and knowledge-sharing activities.
  • Maintain awareness of emerging cyber threats, attack methodologies, indicators of compromise, and evolving cybersecurity best practices impacting federal environments.
  • Support compliance initiatives aligned with federal cybersecurity frameworks including:
    • NIST SP 800-53
    • RMF (Risk Management Framework)
    • DISA STIG compliance
    • Zero Trust security principles
    • Federal incident reporting procedures

Required Qualifications

Education

  • High School Diploma or GED required.
  • Associate’s Degree in Cybersecurity, Information Technology, Computer Science, Information Systems, or related technical discipline preferred.
  • Bachelor’s Degree in Cybersecurity, Computer Science, Information Assurance, Network Engineering, or related field highly desired.

Required Experience

  • Approximately 1 year of experience in one or more of the following:
    • Security Operations Center (SOC) operations
    • Cybersecurity monitoring
    • IT Help Desk / Service Desk
    • Network Operations Center (NOC)
    • Systems Administration
    • Information Assurance
    • Technical Support in enterprise IT environments
  • Experience reviewing and analyzing security alerts, logs, or suspicious activity within enterprise environments.
  • Foundational understanding of:
    • TCP/IP networking
    • DNS
    • HTTP/HTTPS
    • VPN technologies
    • Windows and Linux operating systems
    • Active Directory
    • Authentication and access control concepts
  • Experience working with or exposure to enterprise cybersecurity tools such as:
    • SIEM platforms
    • EDR/XDR tools
    • Antivirus solutions
    • Vulnerability scanning platforms
    • Ticketing systems
  • Ability to communicate technical findings clearly both verbally and in writing.
  • Strong analytical and troubleshooting skills with attention to detail.

Required Certifications

Candidates must possess at least one of the following certifications or obtain within 90 days of hire:

  • CompTIA Security+
  • ISC2 Certified in Cybersecurity (CC)
  • Cisco Certified Support Technician (CCST) Cybersecurity
  • Microsoft SC-900
  • Cisco CyberOps Associate

Preferred Certifications

The following certifications are highly desirable:

  • CompTIA CySA+
  • GIAC Security Essentials (GSEC)
  • Certified Ethical Hacker (CEH)
  • Splunk Core Certified User
  • Microsoft SC-200

Clearance & Federal Requirements

  • U.S. Citizenship required.
  • Ability to successfully pass a federal background investigation.
  • Active Secret Clearance preferred.
  • Candidates with prior Department of Defense (DoD), federal civilian agency, or government contractor experience are highly desired.
  • Familiarity with federal cybersecurity environments, compliance standards, and operational security requirements preferred.

Desired Technical Skills

Experience or familiarity with the following technologies and platforms is highly desirable:

  • Splunk
  • Microsoft Sentinel
  • CrowdStrike Falcon
  • Defender for Endpoint
  • Tenable / Nessus
  • Wireshark
  • Palo Alto or Cisco firewalls
  • Active Directory
  • Office 365 / Azure environments
  • VMware
  • Windows Server environments
  • Linux administration basics
  • Multi-factor authentication solutions
  • Endpoint security and log analysis tools

Work Environment

This position supports a federal cybersecurity operations environment requiring professionalism, operational discipline, strict adherence to security procedures, and collaboration within a mission-focused SOC team. Candidates must be comfortable supporting rotational schedules, operational coverage requirements, and time-sensitive cybersecurity response activities.

Compensation & Benefits

Compensation is based on experience, certifications, education, technical qualifications, clearance level, and federal contract requirements.

Benefits package that may include:

  • Medical, Dental, and Vision, Life, STD & LTD Insurance
  • 401(k) Retirement Plan
  • Paid Time Off (PTO)
  • Paid Federal Holidays
  • Employee Assistance Program (EAP)

Estimated Salary Range: $74,000 – $90,000 annually

Equal Employment Opportunity Statement

P3S Corporation is an Equal Opportunity Employer committed to fostering a professional, diverse, and inclusive workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status, or any other protected classification under applicable federal, state, or local law.

Disclaimer

This job description is intended to describe the general nature and level of work being performed. It is not intended to be an exhaustive list of all duties, responsibilities, or qualifications required for the position. Duties and requirements may change based on contract, customer, or operational needs.

Job Category: cybersecurity
Job Type: Full Time
Job Location: San Antonio Texas

Apply for this position

Allowed Type(s): .pdf, .doc, .docx