Description

This position will work within Cyber Florida's Security Operations Center (SOC) Apprenticeship Program and the Florida Cyber Hub. The SOC Analyst (Full Time) will work with security tools such as a SIEM, DLP, IDP, threat reports, and other security tools to identify incidents and threats. The SOC Analyst will also complete incident reports, produce threat advisories and reports, and handle issues according to established procedures and guidelines. The SOC Analyst will perform troubleshooting of technical issues, provide technical support to business partners and end users, and create technical documentation. The SOC Analyst will also assist in training new hires (junior staff and students) in their SOC Analyst roles and provide cyber security engineering support to SOC operations.

This position is is time-limited and will be reviewed each year for extension based on funding. Minimum Qualifications:
Bachelor's degree in computer science, MIS, or other field involving software and analytical training, one year of IT-related work experience, OR a bachelor's degree with no specific required field and two years of IT-related work experience.

Preferred Qualifications:
Master's degree in a related field OR a combination of four years of IT-related work experience and validated training. Preparation for relevant IT certification is related to training. Demonstrated ability to link program goals to strategic goals. Detail-oriented, with strong communication skills and the ability to effectively manage time and tasks, is imperative. Must be able to work collaboratively with all team members and the university.

FLSB1310 Equivalency:
4 years of directly relevant experience may be substituted for bachelor's degree.
6 years of directly relevant experience may be substituted for master's degree.

This position may be subject to a Level 1 or Level 2 criminal background check.
Applicants for USF employment are entitled to request reasonable accommodation(s) in the application process. A request is to be made at least five (5) working days prior to the time the accommodation(s) is needed. Contact the USF ADA Lead (hr-ADA-Request@usf.edu) to coordinate your accommodation request.Working at USF
\n
With approximately 16,000 employees, the University of South Florida is one of the largest employers in the Tampa Bay area. We are dedicated to cultivating a talented, engaged and driven workforce that strives to be bold. Employees excel in USF's rich academic environment, which fosters their development and advancement. In 2025, Forbes recognized USF as one of Florida's best large employers, ranked No. 1 among the state's 12 public universities. Our first-class benefits package includes medical, dental and life insurance plans, retirement plan options, employee and dependent tuition programs, generous leave, and hundreds of employee perks and discounts.
\n
About USF
\n
The University of South Florida is a top-ranked research university serving approximately 50,000 students from across the globe at campuses in Tampa, St. Petersburg, Sarasota-Manatee and USF Health. USF is recognized by U.S. News & World Report as a top 50 public university and the best value in Florida. U.S. News also ranks the USF Health Morsani College of Medicine as the No. 1 medical school in Florida and in the highest tier nationwide. USF is a member of the Association of American Universities (AAU), a group that includes only the top 3% of universities in the U.S. With an all-time high of $738 million in research funding in 2024 and as a top 20 public university for producing U.S. patents, USF uses innovation to transform lives and shape a better future. The university generates an annual economic impact of more than $6 billion. USF's Division I athletics teams compete in the American Athletic Conference. Learn more at www.usf.edu .
\n
Compliance and Federal Notices
\n
This position may be subject to a Level 1 or Level 2 criminal background check.
\n
Applicants have rights under Federal Employment Laws :
\n
The University of South Florida is an equal opportunity employer that does not discriminate against any employee or applicant for employment based on any characteristic protected by law. The University maintains programs for protected veterans and individuals with disabilities in accordance with all applicable federal and state laws.
\n
Family and Medical Leave Act (FMLA)
\n
Applicants for USF employment are entitled to request reasonable accommodation(s) in the application process. A request is to be made at least five (5) working days prior to the time the accommodation(s) is needed. Visit the Central Human Resources ADA Accommodations webpage for more information on requesting an accommodation during the application/interview process.
\n
Equal Employment Opportunity
\n
The University of South Florida is an equal opportunity employer that does not discriminate against any employee or applicant for employment based on any characteristic protected by law. The University maintains affirmative action programs for protected veterans and individuals with disabilities in accordance with all applicable federal and state laws. This job description does not constitute an employment contract.

• Create and assist in documenting processes, procedures, and other activities related to the SOC.
• Work and develop security applications for operational security (SIEM queries, Defender queries, runbooks, etc.)
• Analyze and respond to security alerts. Provide timely updates and resolutions to end-users.
• Prepare detailed threat advisories with recommendations and indicators of compromise.
• Research trends and current precautions for cybersecurity vulnerabilities, exploits, and other potential threats.
• Assist in training junior staff and new student SOC analysts and getting them acclimated to the environment.
• Guide junior analysts on best practices and assist in distributing their workload.
• Work on security engineering projects that will help in the build-out and capability of the SOC.
• Review, set up, test, and implement cloud, hybrid, and on-prem cyber security engineering solutions. (Velociraptor, malware analysis lab, network IDS, etc.)
• Maintain and update log management and SIEM solution (Splunk, Elastic, etc.)
• Familiar with Amazon Web Services (AWS), such as Workspaces, EC2 instances, and security groups. Create and maintain golden images (AMIs) for deployment within an AWS environment.
• Familiar with Microsoft Azure, such as Virtual machines, Storage, and security groups. Create and maintain golden images (VHDs) for deployment within an Azure environment.
• Perform software installations and upgrades to operating systems and software applications.
• Act as a point of escalation to resolve requests or issues from end users.
• Implement and enhance technology standards based on best practices - ensuring high system availability and providing an easily sustainable, compatible, and scalable architecture for future implementations.
• Perform routine security tasks in support of the systems for the Security Operations Center.
• Review security tools and create status reports according to schedule and need.
• Analyze and investigate security data from a range of security tools and resources.
• Conduct and provide incident response and digital forensic support when required.
• Research threats and monitor feeds to produce cyber threat intelligence reports.
• Keep up to date with cybersecurity software and hardware tools and resources.
• Communicate effectively with clients while thoroug hly documenting conversations, exchanges, or sessions into ticketing systems.
• Provide feedback to leadership for improvement.
• Performs other information technology duties as required to support the unit's work