Security Analyst - Project Lead

Dice is the leading career destination for tech experts at every stage of their careers. Our client, InterBase Corporation, is seeking the following. Apply via Dice today!

11260 - IT - ADMIN - Security Analyst - Project Lead

Location - Columbia SC - 100% Remote

Duration - 12 Months

Start Date - 6 July 2026

Last Date of submission - 9 June 2026

The State of South Carolina is looking for a Security Analyst - Project Lead

Interview Process: 1 Round of Virtual/Online Interviews - potential for second round of in-person interviews

Additional Information: Preference will be given to candidates that are local to SC and are able to come onsite for project needs.

Required Skills

Interested in remote work opportunities in IT & Network Engineering? Discover IT & Network Engineering Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

2+ Years of Experience with Security Monitoring and Incident Response

2+ Years of Experience with MITRE ATT&CK framework.

2+ Years of Experience with dashboard creation and reporting

Prefrred Skills

Experience with the Palo Alto Cortex XSIAM/XDR platform.

Knowledge of Linux network administration and network design.

Experience in administration of firewalls, VPN technology, Active Directory, Intrusion Detection/Prevention systems.

Candidate is local to Columbia, SC or surrounding city in South Carolina

Scope of the project:

The position will work as an Tier 2 SOC Analyst for the Division of Information Security. This role will focus on supporting security monitoring, threat detection, security incident response and security investigations. Engaging directly with state agencies to promote, support, and improve adoption of centralized security services is a key focus. The engagement is expected to be needed for 12 months with the possibility of extension.

Daily Duties / Responsibilities:

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL-TIME REMOTE (ON-SITE AS NEEDED).

• Continuously review and correlate security event data across SIEM, EDR, IDS/IPS, and threat intelligence sources to identify complex attack patterns, emerging threats, and security incidents.
• Perform deep-dive analysis of suspicious activity, validate incidents, determine root cause and impact, and escalate critical incidents with detailed context to Tier 3 as required.
• Create detailed incident reports, timelines, and post-incident summaries; contribute to lessons-learned documentation and recommendations for remediation and preventative measures.
• Investigate user-reported phishing, malware infections, and potential policy violations; advise users and internal/external teams on containment and recovery actions.
• Recommend updates to SOC playbooks and workflows based on real-world INVESTIGATIONS, fine-tune detection rules. Alert thresholds, and correlation logic to reduce false positives and improve threat coverage.
• Collaborate with engineering teams to ensure monitoring tools are properly configured and tuned. Integrate new threat intelligence feeds into workflows and proactively hunt for threats using up-to date tactics, techniques, and procedures (TTPs)
• Serve as a customer-facing SME, selling the value of DIS services by demonstrating capabilities and resolving issues.
• Document processes, runbooks, and troubleshooting steps related to SOC operations.
• Coordinate with engineering, SOC, and agency staff as needed to meet goals.
• Other duties as needed.