SOC Splunk Analyst Overnight Weekend & Holiday Shifts

Posted 3 weeks ago

Only freelancers located in the U.S. may apply.U.S. located freelancers only

Summary

TOSS C3 just won a significant state government Security Operations Center contract in Massachusetts, built around a large enterprise Splunk environment. We are staffing a 24/7 SOC team and are hiring for shift coverage roles immediately. Start is June 2026. This is not a casual engagement. This is a real, active government SOC supporting critical state infrastructure. The work is serious and the expectations are high. If that sounds like your environment, keep reading. AVAILABLE SHIFT: Track B: Weekends Overnight Shift & Holiday Coverage (6 PM to 6 AM, Friday - Sunday) Lead investigator role for after-hours high-priority incidents and proactive threat hunting. Requires senior-level experience. FLOATER: This position will be available for vacation and personal time coverage for the following shifts: - Shift 1: 6pm to 6am, Monday - Thursday - Shift 2: 6pm to 6am, Friday - Sunday & Holidays - Shift 3: 6am - 6pm, Saturday - Sunday & Holidays HARD REQUIREMENTS — READ BEFORE APPLYING These are non-negotiable. If any of these are a problem, please do not apply. 1. US-Based Work Only All work must be performed from within the United States at all times. A single login from outside the US -- including while traveling -- is a breach of federal and state contract law. No exceptions. 2. Federal Background Checks Every team member must pass CJIS (Criminal Justice Information Services) and IRS Publication 1075 background checks before starting. You must be prepared for full federal-level screening and disclosure. 3. Ongoing Shift Availability These are not one-time gigs. We need reliable, consistent coverage on the schedule you commit to. If your availability changes month to month this is not the right fit. WHAT YOU WILL BE DOING - Monitor a large enterprise Splunk Enterprise Security environment for active threats - Triage, investigate, and escalate security alerts according to documented SLOs - Document every action in ServiceNow -- if it is not logged, it did not happen - Execute shift handoffs with written summaries so the next analyst knows exactly what is warm - Follow established runbooks and escalate immediately when automation fails - Maintain vigilance and accuracy across the full length of your shift WHAT WE ARE LOOKING FOR For Evening and Weekend Tracks: - 2 to 5 years of SOC or security operations experience - Hands-on Splunk experience -- alert triage, search queries, dashboard navigation - Security+ or CySA+ preferred - Strong documentation discipline -- ServiceNow experience is a plus - Calm and methodical under pressure For Overnight Track (senior role): - 7+ years in SOC operations - Deep experience with threat hunting and ransomware attack chain analysis - CISSP, GIAC, or equivalent certification preferred - Proven ability to lead investigations independently with minimal supervision All Tracks: - Ability to distinguish True Positives from False Positives quickly and accurately - Understanding of escalation protocols and why the 15-minute window matters - Professional communication with state agency contacts -- assertive without being aggressive - High personal discipline and focus during solo overnight or low-activity periods --- HOW TO APPLY Submit a proposal that includes: 1. Which shift track you are applying for (Overnights or Floater Position) 2. A brief description of your Splunk and SOC experience and the tools you have worked with 3. Confirmation that you are US-based and prepared for CJIS and IRS 1075 background checks 4. Your availability to start in June 2026 Proposals that do not address all four points will not be reviewed.

  • More than 30 hrs/week
    Hourly
  • 6+ months
    Duration
  • Intermediate
    Experience Level
  • $30.00

    -

    $70.00

    Hourly
  • Remote Job
  • Ongoing project
    Project Type
Skills and Expertise
Mandatory skills
Incident Response Plan
Activity on this job
  • Proposals:5 to 10
  • Last viewed by client:last week
  • Hires:
    2
  • Interviewing:
    2
  • Invites sent:
    0
  • Unanswered invites:
    0
About the client
Member since Oct 20, 2018
  • United States
    Southborough4:20 PM
  • $879K total spent
    37 hires, 11 active
  • 38,122 hours
  • Tech & IT
    Large company (100-1,000 people)

Explore similar jobs on Upwork

Security and Compliance SpecialistFixed-price‐ Posted 2 weeks ago
Network Security
Information Security
Penetration Testing
Security Analysis
B2B Sales Partner for CybersecurityHourly‐ Posted 1 week ago
B2B Marketing
Sales
Outbound Sales
Telemarketing

How it works

  • Post a job icon
    Create your free profile
    Highlight your skills and experience, show your portfolio, and set your ideal pay rate.
  • Talent comes to you icon
    Work the way you want
    Apply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
  • Payment simplified icon
    Get paid securely
    From contract to payment, we help you work safely and get paid securely.
Want to get started? Create a profile

About Upwork

  • Rating is 4.9 out of 5.
    4.9/5
    (Average rating of clients by professionals)
  • G2 2021
    #1 freelance platform
  • 49,000+
    Signed contract every week
  • $2.3B
    Freelancers earned on Upwork in 2020

Find the best freelance jobs

Growing your career is as easy as creating a free profile and finding work like this that fits your skills.

Trusted by

  • Microsoft Logo
  • Airbnb Logo
  • Bissell Logo
  • GoDaddy Logo