Security Operations Center Analyst

At Ardent, we hire people who want more than a job — they want to serve a mission that matters. Our teams support the federal government’s most critical national security and defense priorities, helping protect the nation, strengthen resilience, and advance the technologies and capabilities that keep America secure. For veterans, cleared professionals, and purpose-driven innovators, Ardent is a place to continue serving alongside a team that understands the importance of the mission and the people behind it.

We also know top talent has choices, which is why we back our mission with benefits and flexibility that stand out: competitive pay, comprehensive health coverage, flexible PTO, federal holidays off, tuition reimbursement, professional development support, wellness stipends, and a culture that values and rewards hard work, dedication, and adaptability. If you want to build something meaningful, while enjoying the kind of flexibility and support that you need to do your best work — Ardent is where your next mission begins.

Ardent is seeking a Security Operations Center (SOC) Analyst to support 24x7 security monitoring, alert triage, and incident response activities across enterprise environments. This role combines Tier I and Tier II responsibilities, including initial alert validation, advanced investigation, and coordination of incident response efforts to ensure timely detection, analysis, and remediation of security threats.

• →Monitor security alerts and events in a 24x7 SOC environment.
• →Perform initial triage and validation of alerts to determine severity and impact.
• →Conduct advanced alert investigation and analyze security events across identity, endpoint, and network telemetry.
• →Handle Tier I escalation workflows and support Tier II incident response activities.
• →Coordinate incident containment efforts and escalate complex incidents to Tier III as needed.
• →Monitor log ingestion pipelines and ensure data sources are functioning properly.
• →Document incidents, findings, and response actions in accordance with SOC procedures.
• →Contribute to daily reporting and provide accurate shift handoff documentation.
• →Identify trends, anomalies, and potential threats through continuous monitoring and analysis.
• →Collaborate with cross-functional teams to support incident resolution and improve detection capabilities.

Requirements: 

• →Bachelor’s degree in Cybersecurity, Information Technology, or a related field, or equivalent work experience.
• →Minimum of 4 years of experience in a Security Operations Center (SOC) or cybersecurity operations role.
• →Experience with security monitoring tools, SIEM platforms, and incident response processes.
• →Strong understanding of alert triage, escalation procedures, and incident handling workflows.
• →Experience analyzing logs, alerts, and telemetry from identity, endpoint, and network systems.
• →Ability to work in a 24x7 operational environment, including shift-based coverage.
• →Must hold at least one of the following certifications or equivalent: GCIA, GCIH, CISSP, CEH, or similar cybersecurity certification. 

Preferred Qualifications: 

• →Experience with Microsoft Sentinel or Microsoft security platforms.
• →Relevant cloud security certifications (e.g., AWS security).
• →Familiarity with log ingestion pipelines and monitoring data health.
• →Privacy certifications such as CIPP/US or CIPM.
• →Experience supporting federal or regulated environments.

Due to the nature of the work we support, all candidates in consideration for this role must be willing to undergo the government issued background investigation process. We highly encourage all Veterans and those with disabilities to apply.

Ardent is an equal opportunity employer. We will not discriminate in employment, recruitment, advertisements for employment, compensation, termination, upgrading, promotions, and other conditions of employment against any employee or job applicant on the bases of race, color, gender, national origin, age, religion, creed, disability, veteran's status, sexual orientation, gender identity, gender expression, or any other basis protected by state, local, or federal law.