Job Description
Job Description
Revolutional delivers advanced technology solutions and mission support to federal agencies across civilian, health, and national security environments. We apply modern capabilities, including AI/ML, cloud, cybersecurity, and IT modernization to solve complex challenges, enable faster and more secure operations, and drive measurable mission outcomes.
We are redefining how federal technology gets built and delivered by operating with a product mindset, prioritizing speed, ownership, and execution over bureaucracy.
Title: SOC Watch Officer
Location: Chandler, AZ
Terms: Full-time
Clearance: Active Secret required; Top Secret/SCI eligibility required
Travel: 0-20%
Position Description
As a SOC Watch Officer at Revolutional, you are the senior authority on the floor during your watch. You are responsible for the operational integrity of a 24/7/365 security operations mission — overseeing analyst activity, managing active security events, and making real-time decisions that protect a large-scale federal network environment.
You are not a passive supervisor. You monitor what your analysts are working, catch what they miss, direct response actions on active incidents, and ensure nothing falls through the cracks across your shift. When events escalate, you are the first line of senior judgment before it reaches the SOC Team Lead.
Responsibilities
- Maintain situational awareness across all active monitoring queues, open incidents, and security events during assigned watch
- Supervise SOC analysts on shift; direct workload, review analyst actions, and ensure response quality and timeliness meet program standards
- Make real-time operational decisions on event triage, escalation, and response prioritization during your watch
- Serve as the shift escalation point for complex or high-severity events; determine when incidents require SOC Team Lead or program leadership notification
- Ensure accurate, timely documentation of all security events, analyst actions, and incident status throughout the shift
- Conduct shift turnover briefings; communicate open incidents, active threats, and watch floor status to incoming personnel with full fidelity
- Monitor SOC tooling and sensor coverage during watch; escalate gaps, outages, or anomalies that affect detection capability
- Enforce adherence to SOC playbooks, standard operating procedures, and incident handling protocols across the shift team
- Support incident response activities through containment and remediation, coordinating with relevant technical teams as needed
- Contribute to after-action reviews, shift reports, and continuous improvement of watch floor operations
What You Bring (Requirements)Baseline Requirements
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience)
- 3 or more years of supervisory experience in a security operations or related technical environment
- Substantial hands-on security operations experience, including monitoring, detection, and incident response in enterprise network environments
- Active Secret clearance; Top Secret/SCI eligibility required
Technical & Domain Capabilities
- Deep familiarity with SOC operations: continuous monitoring, alert triage, log analysis, and threat detection across complex network environments
- Experience managing or directing analyst teams during active security incidents
- Proficiency with SIEM platforms, EDR tools, and network monitoring technologies used in enterprise SOC environments
- Understanding of incident response procedures from detection through containment and remediation
- Familiarity with FISMA, NIST incident response frameworks, and federal security operations standards
- Working knowledge of network security architectures including LANs, WANs, and cloud environments
Core Strengths
- Decisive under pressure — you make sound calls on active incidents without waiting for perfect information
- Strong situational awareness: you track multiple active events simultaneously and know which ones need your attention first
- Effective shift supervisor who holds analysts accountable and maintains operational discipline across the watch floor
- Clear communicator who writes clean incident documentation and delivers crisp shift handoffs
Certifications
One certification from each of the following groups is required:
Group 1 — Security Operations
- CASP+ (CompTIA Advanced Security Practitioner), CCSP (Certified Cloud Security Professional), SSCP (Systems Security Certified Practitioner), GMON (GIAC Continuous Monitoring), GCIH (GIAC Certified Incident Handler), GCIA (GIAC Certified Intrusion Analyst), or GECD (GIAC Enterprise Cloud Defense)
Group 2 — DoD 8570 CSSP
- Any certification qualifying under the DoD 8570 CSSP Analyst, Infrastructure Support, or Incident Responder categories
Note: 6 years of equivalent hands-on security operations experience may be considered in lieu of one certification requirement.
Nice to Have (Differentiators)
- Experience as a watch officer or shift lead in a federal civilian, defense, or intelligence SOC environment
- Familiarity with tier-less SOC operations and cross-functional incident coordination
- Background in threat hunting, APT detection, or kill-chain-based response methodologies
- Experience with Zero Trust monitoring or cloud-based security operations
- Active TS/SCI clearance
#DICE #LinkedIn
___________________________________________________________________________________________________________
Here at Revolutional we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day. Some of these recognitions include:
- Recognized as a Top 20 "Best Place to Work in Virginia"
- Recipient of Department of Labor's HireVets Gold Medallion
- Great Place to Work Certification for five years running
- A Virginia Chamber of Commerce Fantastic 50 company
- A Northern Virginia Technology Council Tech 100 company
- Inc. 5000 list of fastest growing companies for eleven years
- Two-time SBA SBIR Tibbett's Award winner
- Virginia Values Veterans (V3) Certification
We recognize that every bit of our success is the result of our teams of hard-working, motivated, and innovative professionals who are proud to call themselves part of the Revolutional family! In addition to competitive compensation, a family-focused culture, and a dynamic, productive work environment, we offer all full-time employees a variety of benefits including, but not limited to
- Traditional and HSA- eligible medical insurance plans
- 100% employer-paid dental and vision insurance options
- 100% employer-sponsored STD, LTD, and life insurance
- 5% 401(k) company matching
- Flexible-schedules and teleworking options
- Paid holidays and PTO Accrual Plans
- Paid Parental Leave
- Professional development and career growth opportunities
- Team and company-wide events, recognition, and appreciation-- and so much more!
Check out our Revolutional | LinkedIn to find out a little more about who we are and if we are the right next step for your career!
Revolutional is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics. Revolutional does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans. To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily. Other duties in addition to those listed may be assigned as necessary to meet business needs. Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job. If you are in need of an accommodation, please contact HR@revolutional.com.
