SOC Analyst 1 & 2 (GTA)

Start your career in public service – JOIN OUR TEAM

Georgia Technology Authority (GTA) a Great Place to Work® certified!

The Georgia Technology Authority (GTA) is currently seeking a SOC Analyst 1 & 2 – in the Office of Information Security.

The Georgia Technology Authority (GTA) currently manages the delivery of IT infrastructure services to 89 Executive Branch agencies and managed network services to more than 1,200 state and local government entities. IT infrastructure services encompass mainframes, servers, service desk, end user computing, disaster recovery and security. Managed network services include the state’s wide and local area networks, voice, cable and wiring, and conferencing services.

Want to know more about our AWARD-WINNING Authority visit: https://gta.georgia.gov/

Please indicate in your application whether you are applying for SOC Analyst 1 or SOC Analyst 2. Make sure your experience and qualifications match the requirements for the level you select.

JOB SUMMARY: 

SOC Analyst 1

The Security Operations Center (SOC) Analyst 1 will be responsible for monitoring, detecting, and reporting on security incidents. The SOC Analyst will perform initial triage and assist in vulnerability assessments, providing foundational experience in cybersecurity.

SOC Analyst 2

The Security Operations Center (SOC) Analyst 2 will handle more complex incidents, lead vulnerability assessments, and conduct threat analysis. In this role, you will be essential in coordinating incident response and implementing proactive security measures like threat hunting. The SOC Analyst 2 may also mentor SOC Interns.

RESPONSIBILITIES:

SOC Analyst 1

·       Monitor network traffic for suspicious activity using SIEM and other security tools.

·       Perform initial triage and categorize security alerts based on severity.

·       Assist in vulnerability scanning and reporting findings to higher-level analysts.

·       Maintain accurate incident tracking and documentation.

·       Collaborate with IT teams to maintain security baseline configurations.

·       Assist with the deployment and operation of cybersecurity tools.

·       Perform other duties as assigned.

SOC Analyst 2

• Monitor network traffic for suspicious activity using SIEM and other security tools.
• Perform initial triage and categorize security alerts based on severity.
• Lead investigations into moderate to complex cyber incidents.
• Conduct vulnerability assessments and provide recommendations for remediation.
• Perform threat hunting and analyze network traffic for anomalies.
• Collaborate with IT teams to develop and improve security protocols.
• Manage incident documentation, including after-action reviews.
• Mentor junior analysts in incident handling and response techniques.
• Perform other duties as assigned.

CORE COMPETENCIES:

·       Organizational skills and attention to detail in tracking security events.

·       Ability to research and analysis skills in cybersecurity, including understanding threat reports.

·       Ability to establish skills in incident detection, triage, and security monitoring.

·       Ability to perform packet-level analysis and use cybersecurity defense tools.

AGENCY SPECIFIC QUALIFICATIONS:

Minimum Qualifications: 

SOC Analyst 1

·       Two (2) years of experience in a cybersecurity or SOC environment, with exposure to security monitoring, incident response, or threat analysis.

·       Currently holds an intermediate cyber certification per state guidelines or achieves within 12 months of start date at least one of the following:

o   CompTIA Security+ (highly recommended)

o   Cisco Certified CyberOps Associate

o   GIAC Security Essentials (GSEC)

·       The ability to successfully pass GBI and FBI background investigation for purposes of working with the SOC for the SOG Enterprise. 

·       Must be flexible: available after core business hours and travel to/from incidents throughout the State of Georgia.

·       Comfortable working in a restricted environment with limited connectivity.

SOC Analyst 2

• Four (4) years of experience in cybersecurity roles focused on SOC operations and/or complex incident response.
• Currently holds an intermediate cyber certification per state guidelines or achieves within 12 months of start date at least one of the following: (GCIH, CEH, CySA+, GSOC):
  • GIAC Certified Incident Handler (GCIH)
  • Certified Ethical Hacker (CEH)
  • CompTIA Cybersecurity Analyst (CySA+)
  • GIAC Security Operations Certified (GSOC)
• The ability to successfully pass GBI and FBI background investigation for purposes of working with the SOC for the SOG Enterprise. 
• Must be flexible: available after core business hours and travel to/from incidents throughout the State of Georgia.
• Comfortable working in a restricted environment with limited connectivity.

Preferred Qualifications: 

(Preference will be given to candidates who demonstrate some or all the following skills/experience):

SOC Analyst 1

·       Bachelor's degree in Cybersecurity, Information Systems, or related field AND two (2) years of experience in cybersecurity roles within SOC operations or incident response.

·       Knowledge of handling classified or confidential information

·       Knowledge of various intelligence and forensic tools utilized for cyber data collection, analysis, and remediation.

·       Knowledge of the cyber incident handling process and experience in its execution.

·       Knowledge of common cybersecurity threats, vulnerabilities, and incident response tools.

·       Basic understanding of network infrastructure and access control systems.

SOC Analyst 2

• Bachelor's degree in Cybersecurity, Information Systems, or related field AND four (4) years of experience in cybersecurity roles within SOC operations or incident response.

• Experience handling classified or confidential information
• Knowledge of various intelligence and forensic tools utilized for cyber data collection, analysis, and remediation.
• Working knowledge of the cyber incident handling process and experience in its execution.
• Experience in network traffic analysis and threat indicator identification
• Strong, oral and written communication skills with ability to understand technology sufficiently to clearly communicate the complexity in simple terms for key stakeholders.

COMPENSATION/WORKER TYPE/ADDITIONAL DETAILS:

Hiring Salary: 

·       SOC Analyst 1 $65,100.00 - $83,500.00

·       SOC Analyst 2 $70,800.00 - $91,000.00

Worker Type: Hybrid (minimum two (2) days in-office) State of Georgia Remote Work Option

*Current Georgia state government employees will be subject to SPB rule provisions.

EARN MORE THAN A SALARY! In addition to a competitive salary, the Georgia Technology Authority offers a generous benefits package, which includes employee retirement plan; paid holidays annually; vacation and sick leave; health, dental, vision, legal, disability, accidental death and dismemberment, health and childcare spending account; in addition to telework opportunities depending upon position. More information on Benefits: https://team.georgia.gov/my-benefits/

Due to the volume of applications received, we are unable to provide information on application status by phone or e-mail. All qualified applicants will be considered but may not necessarily receive an interview. Selected applicants will be contacted by the hiring agency for next steps in the selection process. Applicants who are not selected will not receive notification.

Georgia Technology Authority does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.