SOC Team Lead

Overview

Tyto Athene is searching for a SOC Team Lead to support a defense customer in Richmond, VA. The Senior SOC Lead supports the Security Operations Center (SOC) and Watch Officer in protecting our customer's digital assets against cyber threats. This role is responsible for leading incident response activities, conducting forensic investigations, validating security events, and ensuring SOC personnel operate in compliance with Department of Defense (DoD) cybersecurity workforce requirements.

The ideal candidate brings strong experience in SOC operations, incident response, threat analysis, SIEM management, and forensic investigations within a DoD or federal environment.

• Assist the Watch Officer of the SOC team and cybersecurity professionals within customer environment
• Respond to various security incidents to protect the customer's digital assets from cyberattacks
• Oversee the team, ensuring everyone is trained, motivated, and effectively working together
• Provide technical knowledge and analysis of security incident responses
• Perform forensic analysis of devices involved in incidents and forensic reporting
• Investigate potential intrusions and security events to contain and mitigate incidents
• Research cyber-attacks, malware, and threat actors to determine potential impact and develop remediation guidance
• Analyze network traffic and identify attack/malicious activity
• Document incident response activities and lessons learned
• Communicate incident response activities effectively
• Provide monitoring and response capabilities
• Regularly update and optimize queries and alerting rules
• Maintain the confidentiality and integrity of the data within SIEM
• Provide timely and accurate reports to management and the government
• Validate suspicious events by performing investigations using SIEM, leveraging available tools, threat intelligence, OSINT, TTPs, and IOCs
• Leverage knowledge of Alert Triage, SOC Operations, and Defense in Depth (DiD) to contribute to projects for overall success
• Produce high-quality written and verbal communications, recommendations, and findings to management and the government in a timely manner
• Escalate events to either the watch officer or government in a timely fashion
• Provide other services and support as needed or directed by the government

Required:

• Over 8 years of experience in a relevant IT engineering mission area
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience)
• 8+ years of experience in SOC operations, cybersecurity incident response, or threat analysis
• Hands‑on experience with SIEM platforms and log analysis
• Experience conducting forensic investigations in enterprise environments
• Strong understanding of:
• Alert Triage and SOC Operations
• Incident Response methodologies
• Threat Intelligence and OSINT
• TTPs and IOCs
• Defense‑in‑Depth (DiD) strategies
• Experience supporting DoD or federal cybersecurity environments preferred

• Secret Clearance required

Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically between $115,000-$125,000. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above‑stated range.

• Health/Dental/Vision
• 401(k) match
• Flexible Time Off
• STD/LTD/Life Insurance
• Referral Bonuses
• Professional development reimbursement
• Maternity/Paternity leave

Tyto Athene is a trusted leader in IT services and solutions, delivering mission‑focused digital transformation that drives measurable success. Our expertise spans four core technology domains—Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT—empowering our clients with cutting‑edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly supports Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission‑driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #Team Tyto?

Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.