View all jobs
Senior Information Security Analyst
Arlington, VA ยท Information TechnologySenior Information Security Analyst
Position Title: Senior Information Security Analyst (Senior Level)
Position Type: Full Time Employee
Location: Arlington, VA (within 50 miles of ARNG Readiness Center, TARC)
Clearance Requirement: Top Secret / SCI Eligible
Salary Range: $147,000 โ $164,000
Start Date: Contingent upon contract award
The ideal candidate brings deep experience in defensive cyber operations, SOC management, and incident response within DoD or federal environments. This is a high-impact role operating at the intersection of enterprise cybersecurity, threat intelligence, and compliance in support of over 120,000 ARNG users across 2,800 sites nationwide.
Position Title: Senior Information Security Analyst (Senior Level)
Position Type: Full Time Employee
Location: Arlington, VA (within 50 miles of ARNG Readiness Center, TARC)
Clearance Requirement: Top Secret / SCI Eligible
Salary Range: $147,000 โ $164,000
Start Date: Contingent upon contract award
Position Overview
Emerald Technical Solutions is seeking a Senior Information Security Analyst to support the Army National Guard (ARNG) Enterprise, Network, Operations, and Cybersecurity Support (ENOCS) Task Order. This position serves as a senior-level cybersecurity operations lead supporting the ARNG Regional Cyber Center (RCC) Security Operations Center (SOC) and Cyber Incident Response Team (CIRT).The ideal candidate brings deep experience in defensive cyber operations, SOC management, and incident response within DoD or federal environments. This is a high-impact role operating at the intersection of enterprise cybersecurity, threat intelligence, and compliance in support of over 120,000 ARNG users across 2,800 sites nationwide.
Key Responsibilities
SOC Leadership & Incident Response
- Lead 24/7/365 SOC operations and manage the CIRT for the ARNG enterprise
- Direct all cyber incident handling, response activities, and fulfillment of reporting requirements
- Develop and deploy countermeasures to systems and networks to contain and remediate cyber incidents
- Produce incident assessment and response reports with recommended remediation activities
- Develop and maintain Incident Response Plans (IRPs) and associated SOPs for all incident response types
- Monitor, investigate, and identify anomalous events detected by security devices across the enterprise
- Validate IDS/IPS alerts and tune SIEM and IDS/IPS events to minimize false positives
- Develop and deploy advanced threat detection and countermeasures on enterprise networks
- Author and implement custom detection content including dashboards, rules, filters, and correlation logic
- Leverage Army Endpoint Security System (AESS) tool suites to monitor rogue systems and manage endpoints
- Analyze cyber news feeds, threat briefs, vulnerability alerts, and signature updates for enterprise applicability
- Process and integrate classified cyber threat intelligence up to TS/SCI level
- Coordinate with RCC-ARNG, NETCOM, ARCYBER, USCYBERCOM, US-CERT, and other RCCs
- Provide situational awareness briefings and cyber threat advisories to ARNG leadership
- Collaborate on enterprise-level playbooks for automation and orchestration
- Support all phases of the DoD Risk Management Framework (RMF) lifecycle including A&A and re-authorization
- Maintain eMASS records, POA&Ms, and FISMA compliance documentation
- Ensure compliance with DISA STIGs, IAVM notices, AR 25-1, AR 25-2, AR 380-5, and NIST SP 800-53
- Support COOP planning and ensure essential cybersecurity services remain available during activation
Required Qualifications
- Active Top Secret security clearance; SCI eligible
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
- 8+ years of experience in cybersecurity operations, SOC management, or incident response
- CISSP (Certified Information Systems Security Professional)
- DoD 8570/8140 IAT Level III or CSSP Incident Responder certification (e.g., GCIH, CEH, or equivalent)
- Demonstrated experience leading SOC or CIRT operations in a DoD or federal environment
- Strong working knowledge of SIEM platforms, IDS/IPS, and enterprise security toolsets
- Experience with eMASS, RMF, STIGs, and IAVM compliance processes
Preferred Qualifications
- Experience supporting Army National Guard, NETCOM, ARCYBER, or similar Army commands
- Familiarity with ARNG-specific tools including ACAS, AESS, and DoDIN-A(NG) network architecture
- GIAC certifications (GCIA, GCFE, GREM, or equivalent)
- Experience with DCI/OT cybersecurity and industrial control system environments
- Knowledge of Army Cyber Protection Team (CPT) operations and CDAP methodology
- Active TS/SCI clearance
Benefits
- Competitive compensation package and comprehensive benefits
- Professional development and certification support (CISSP, GIAC, and DoD 8140 certifications)
- Collaborative and mission-focused team environment supporting national security
- Opportunities for advancement on a growing DoD cybersecurity program