SENIOR SOC ANALYST @ LANCESOFT
We are actively seeking a highly skilled Senior SOC Analyst to join our team, supporting the security operations environment at Georgia Gwinnett College (GGC), a State of Georgia client. This is an essential onsite opportunity located in Lawrenceville, GA, with a defined duration from March 2, 2026, to July 2, 2026. The ideal candidate will possess robust, hands-on experience utilizing the full suite of Microsoft security technologies to enhance the client's defensive posture and handle sophisticated security threats. The role requires commitment to an 8-hour workday, 5 days a week.
Key responsibilities for this position include continuous monitoring and rapid remediation of security alerts generated by Microsoft Sentinel and Defender platforms. The analyst is expected to contribute significantly to the security infrastructure by developing and refining Sentinel workflows and workbooks to achieve maximum automation and efficiency in incident handling. Furthermore, the role involves conducting deep-dive investigations using tools like MS Threat Explorer and Advanced Hunting capabilities, configuring critical security components such as Exchange transport rules, and proactively managing Defender Tenant Block/Allow lists. Crucially, the Senior SOC Analyst will be responsible for gathering and providing accurate forensic data to support complex incident response investigations.
Key responsibilities for this position include continuous monitoring and rapid remediation of security alerts generated by Microsoft Sentinel and Defender platforms. The analyst is expected to contribute significantly to the security infrastructure by developing and refining Sentinel workflows and workbooks to achieve maximum automation and efficiency in incident handling. Furthermore, the role involves conducting deep-dive investigations using tools like MS Threat Explorer and Advanced Hunting capabilities, configuring critical security components such as Exchange transport rules, and proactively managing Defender Tenant Block/Allow lists. Crucially, the Senior SOC Analyst will be responsible for gathering and providing accurate forensic data to support complex incident response investigations.
Key Requirements
Strong hands-on experience in Microsoft security technologies and security operations.
Expertise in monitoring and remediating security alerts from Sentinel and Defender.
Ability to develop and enhance Sentinel workflows and workbooks for security automation.
Proficiency in conducting investigations using MS Threat Explorer and Advanced Hunting tools.
Experience configuring Exchange transport rules related to security events and incident mitigation.
Skill in managing Defender Tenant Block/Allow lists and other access controls.
Capable of providing forensic data collection and analysis to support security investigations.
In-depth knowledge of MS Defender suite implementation and management.
Required expertise with MS Entra ID and on-premises Active Directory security practices.
Proven background in advanced threat hunting and formal incident response protocols.