Skip to main content
HonestMOS
InvestigationsCongress made VA disability claims free to file. An entire industry charges veterans anyway — and nobody can stop them.
Back to 35S Signals Acquisition/Exploitation Analyst — overview, pay, training, civilian translation, reviews
35SE1-E3

Signals Acquisition/Exploitation Analyst

E-1 to E-3 (Junior Enlisted) · Army

HEADS UP

AIT for 35S is at Goodfellow AFB in San Angelo, Texas — the DoD joint cryptologic schoolhouse where Army, Navy, Air Force, and Marine signals collectors all run through the same 25-plus-week pipeline on RF theory, spectrum analysis, software-defined-radio (SDR) operation, and signals-of-interest identification. Treat the joint workforce as the workforce from day one — your career runs through the Army chain, but your seat on a floor or in a SIGINT shelter sits inside a Service Cryptologic Component (SCC) team that does not care which uniform you wear. Two non-negotiables before pin-on E-4: keep the TS/SCI with the CI polygraph clean, and finish the JQR / OJT signoff book on your assigned collection position inside the team's published timeline. Everything else is recoverable; those two are not.

The Honest MOS Read
You are the junior signals acquisition / exploitation analyst — the technical-instrumentation end of SIGINT. The MOS used to be called Signals Collection Analyst on a stack of older publications and recruiting brochures; the current title is Signals Acquisition / Exploitation Analyst (verify whatever the current STP 34-35S and the HRC MOS catalog read on the day you in-process). Whatever the title on the paper, the job is the same: you sit between the antenna and the analyst. You set up the collection geometry; you drive the SDR and the spectrum analyzer; you identify, characterize, and geolocate signals of intelligence interest; you log every signal parameter the next echelon up needs to exploit; and you hand the technical product to the analytic side (35N All-Source / SIGINT analyst, 35F all-source intel analyst) so a maneuver commander or a national-IC customer can act on it. You came out of BCT (Fort Jackson, Fort Sill, Fort Moore, or Fort Leonard Wood depending on cycle) and shipped to Goodfellow Air Force Base in San Angelo, Texas. Goodfellow is the joint cryptologic schoolhouse — the Army's 344th Military Intelligence Battalion is your Army host, and you sit in the same classrooms as Navy CTRs, Air Force 1N3 / 1N4 cryptologic / intelligence airmen, and Marine 26-series signals soldiers. The 35S course is long for a reason. The RF / SDR / spectrum-analysis block is academically demanding; the washout rate is real. The instructor cadre is a mix of senior NCOs from all four services and DoD cryptologic civilians, and they will not pretend you passed when you did not. You either got the material or you did not, and the JQR signoff at your first unit will read accordingly. Before you ever sat down in a Goodfellow classroom you went through a Single Scope Background Investigation (now restructured under Trusted Workforce 2.0 / Continuous Vetting per SEAD 4) and a Counterintelligence (CI) polygraph. The TS/SCI with CI poly is the job-enabling credential — and it is read-in inside the SCIF by a Special Security Officer (SSO) when you arrive at your unit. You do not talk about what you read. You do not talk about what you collect or who you support. You do not put any of it on your LinkedIn at the end of your enlistment in any specific terms. AR 380-5 (Information Security), AR 381-10 (US Army Intelligence Activities), AR 380-67 (Personnel Security Program), and DoDM 5105.21 (SCI Administrative Security Manual) are the governing publications; you sign read-in paperwork on top of them, and Executive Order 12333 sits over the whole stack as the national-level intelligence-activities authority. You will land at one of a small number of seats coming out of Goodfellow. Common: a tactical SIGINT company inside a BCT MI battalion at one of the BCT installations (1st AD at Bliss, 1st CAV at Cavazos, 1st ID at Riley, 3rd ID at Stewart, 4th ID at Carson, 10th MTN at Drum, 25th ID at Schofield, 82nd ABN at Bragg, 101st AAB at Campbell, 173rd at Vicenza, 2nd CR at Vilseck, the Stryker BCTs at JBLM and Alaska). Also common: the 706th MI Group at Fort Meade (NSA / CSS Washington), the 780th MI Brigade at Fort Eisenhower (Georgia — the post was renamed from Fort Gordon in 2023; senior NCOs treat the sign on the gate as the least interesting thing about the unit), the 470th MI Brigade at JBSA-Fort Sam Houston, the 500th MI Brigade at Schofield Barracks (INDOPACOM), the 501st MI Brigade in Korea, or the 66th MI Brigade in Wiesbaden (EUCOM). Less common at this rank: an INSCOM HQ seat at Fort Belvoir, a national-detail seat at NSA / CSS, or a Cyber Mission Force support billet attached to USCYBERCOM via the 780th. National-detail seats are rare for E-1 to E-3 and almost always go to soldiers with a language score, a specific follow-on, or an attribute the gaining command name-requested. The day-to-day job at PV2 / PFC is not what the recruiter described. Most of your week is shadowing a certified collector on the team's assigned position, learning what a normal RF environment looks like in your operating area, running spectrum scans you cannot interpret yet, and grinding through the unglamorous workforce: clearance reinvestigation paperwork, polygraph re-scope ticklers when SEAD 3 or the unit's Continuous Vetting cycle calls for one, SAEDA / TARP / cyber-awareness / OPSEC / insider-threat training ticklers (AR 381-12 / AR 25-2), EKMS / COMSEC hand-receipt entries under AR 380-40, classified destruction logs (SF 153 transfer / destruction, DA 3964 cover sheets, SF 700 / 701 / 702 SCIF forms), two-person integrity walks of the SCIF or shelter spaces, badge audits, antenna setup-and-teardown details, GPS-disciplined-oscillator (GPS-DO) time / frequency reference checks, and the JQR / OJT signoff book the senior NCO inspects every Friday. The other reality of the SCIF: you do not work in an open building. The SCIF is a hardened ICD 705-accredited room with controlled physical access, no personal electronics beyond the door, no cameras, no recording devices, no smart watches, no fitness trackers, no anything with a microphone or a radio. In a tactical SIGINT shelter, the rules port over: the shelter is treated as a deployable SCIF-equivalent under the same controls, and the brigade S2 OIC and the team's SSO grade you on it. Walking a cell phone through the door — even by accident — is a security incident, and the response is a documented out-brief from the SSO, often immediate access suspension while a TARP review runs. The IAT-II credential cycle is real and on the clock. DoDM 8140 (Cyberspace Workforce Qualification — verify the current edition; the 8140 manual was rewritten in the 8140 series after the older 8570 framework) governs the cyber workforce credentialing baseline, and most 35S positions sit on systems that require an IAT-II baseline credential within a published window after you arrive. CompTIA Security+ CE is the most common entry credential and the one the unit will fund through Army Credentialing Assistance via the ArmyIgnitED portal (verify the current portal — the system has changed names). Start studying early. The team does not pull you off the position because you missed the deadline; the DoDM 8140 audit pulls you off, and the team is short a collector for however long it takes you to test. A note on pay and money the recruiter probably blurred. 35S sits inside the cryptologic skill set; there is no special pay solely for the MOS itself, but Foreign Language Proficiency Bonus (FLPB) per DoDI 1340.27 pays if you carry a current DLPT score on a controlled language at the required levels — uncommon at this rank for 35S because the linguistic side runs through the 35P MOS, but possible if you brought a language in with you. Critical Skills Retention Bonus (CSRB) for specific cryptologic skill identifiers runs in cycles; pull the current HRC MILPER message before assuming any specific number. The Blended Retirement System (BRS) TSP match (1% automatic, up to 4% additional with 5% contribution) is the largest financial decision of your first enlistment — talk to S1 in your first week. The cleared-contractor market after ETS pays significantly more than your base pay; the soldiers who maxed TSP from PV2 forward leave with a balance that compounds for the next thirty years on top of the Sec+ / CYSA+ / CISSP-Associate / IC clearance stack.
Career Arc
  • 01BCT (one of the Army's BCT installations), then ship to Goodfellow AFB, TX for the 35S signals-acquisition / exploitation course (25+ weeks under the 344th MI Battalion, joint workforce with Navy / Air Force / Marines).
  • 02TS/SCI with CI polygraph adjudicated through DoD CAF — the gate to every assignment in the MOS.
  • 03First duty station: tactical SIGINT company inside a BCT MI battalion (most common), the 706th MI Group at Fort Meade, the 780th MI BDE at Fort Eisenhower, a regional MI brigade (470th, 500th, 501st, 66th), or rarer national-detail seats via INSCOM / NSA / CSS.
  • 04Month 0-6: in-process the team, SCIF / shelter read-in, JWICS / SIPR / NSANet account paperwork, JQR / OJT signoff book started, IAT-II (Sec+ CE) credential in motion through Army Credentialing Assistance.
  • 05Month 6 TIS: E-2 (automatic per AR 600-8-19); month ~12 TIS: E-3 / PFC (4 mo TIG, waivable).
  • 06Month 6-12: shadowing certified collector on assigned position, JQR half-complete, first polygraph re-scope if SEAD 3 / CV cycle drives one, Foundry / unit-specific schools begin to slot in.
  • 07Month 12-18: first unsupervised position qualification signed off, second collection position under JQR, first CTC rotation (NTC, JRTC, JMRC) with the BCT puts you on a real SIGINT shelter watch for the first time.
  • 08Promotion to E-4 SPC: 24 mo TIS / 6 mo TIG (waivable), DA 3355 worksheet, BLC complete or scheduled, cutoff above MOS-specific line per the monthly HRC MILPER, chain release.
Common Screwups
  • ×Bringing a personal electronic device into the SCIF or a SIGINT shelter — phone, smartwatch, fitness tracker, AirPods, wireless earbuds. Even once. The SSO pulls your access that afternoon, the CI investigation under AR 381-12 runs months, and the incident lives in your security file forever. The clearance may survive; the senior NCO read of you does not.
  • ×DUI / drug pop / Article 15 / off-post arrest with a TS/SCI on the line. SEAD 4 / DoDM 5200.02 adjudicative guidelines apply — Guideline G (alcohol), Guideline H (drugs), Guideline E (personal conduct). The clearance suspends by default; the CI poly access never comes back the same way.
  • ×Failing to self-report under AR 381-12 (TARP) and SEAD 3 — foreign contact, foreign travel, marriage to a foreign national, unexplained financial event. Continuous Vetting surfaces the indicator before you do, and the conversation moves from SSO administrative to CI investigative.
  • ×Posting OPSEC-relevant content on social media — unit patches, building photos, 'first day at Fort Meade' selfies, LinkedIn descriptions that name programs by code or that overspecify what you do at NSA / CSS. Foreign collection against the cryptologic workforce is real; your name on the brigade OPSEC non-compliance roll travels.
  • ×Letting the IAT-II credential lapse on the DoDM 8140 schedule. The audit pulls you off the position the day it expires; the team is short a collector until you re-test; the senior NCO reads the gap as a discipline failure.
  • ×Mishandling a COMSEC / EKMS item under AR 380-40 — keymat, fill device, crypto-ignition key. The two-person integrity chain is the load-bearing wall on the cryptologic enterprise; a missing item is a CI investigation, not a counseling.

A Day in the Life

  • 0500Wake. Coffee. Quick phone check — accountability OK, no soldier emergencies, no overnight team chat from the senior NCO. Phone goes back in the kitchen drawer because it is not going anywhere near the SCIF or the shelter. PT uniform on.
  • 0530PT formation at the MI company area or the team's designated PT pad. MI / cryptologic companies often run PT on a slightly delayed schedule to align with the team's watch rhythm. Accountability to the section sergeant; the senior NCO reads the formation.
  • 0545-0700Unit PT — rotates through cardio days, strength days, recovery-mobility days. The cryptologic workforce has a PT reputation to fight; the cherry who shows up at the front of the run is the cherry the senior NCO notices.
  • 0700-0830Hygiene, breakfast at the DFAC or in the BEQ if you are still in barracks, change into the uniform of the day. OCPs typically; some NSA / CSS detail seats run a different uniform standard — the senior NCO walks you through it.
  • 0830In-process the SCIF. Badge swipe, SF 702 sign on your container, lock all personal electronics in the entry container, walk to your position. The senior collector on the floor reads the previous watch log and briefs the picture.
  • 0830-1130Shadow shift on the assigned collection position. The senior collector drives the SDR and the spectrum analyzer; you sit next to him, you read the spectrum alongside him, you walk through the tooling, you ask questions during the slow moments rather than during the active ones. You also work on your JQR signoff line items — each task you can demonstrate is a signoff to drive.
  • 1130-1300Chow. You eat with the team at the on-post DFAC or in the team space if your facility supports it. The senior NCO read of you forms around that table; the senior collector may pull you aside for a five-minute mentor conversation about the morning's spectrum picture.
  • 1300-1500Afternoon shadow shift continues. You may rotate to a second position for an hour to begin building the second JQR. The senior collector redlines a technical-parameter report you drafted in the morning; you take the redline as a teaching moment rather than as a personal hit.
  • 1500-1600Compliance and admin block. IAT-II credential study if your test date is approaching; annual SAEDA / TARP / cyber-awareness / OPSEC / insider-threat / COMSEC user training if a module is due; COMSEC destruction log entries under AR 380-40 if your section is on rotation; SF 701 end-of-day SCIF checklist support if your section closes the spaces.
  • 1600-1630Section huddle with the senior NCO. The senior NCO walks the team's rollup for the day, names tomorrow's priorities, confirms watch coverage, and reads anyone who is on a deadline (BLC packet, IAT-II test date, polygraph re-scope, JQR milestone).
  • 1630Out-process the SCIF. Lock workstations, sign SF 702, secure containers, walk out. Released. Some days the watch cycle keeps the section in longer; the team chief tells you when that day comes.
  • 1700-2000Personal time. If you are studying for the IAT-II test, this is the block. If you are at the gym chasing an ACFT score the senior NCO will respect, this is the block. Married soldiers get family time; single soldiers in the BEQ rotate between the gym, the books, and the chow hall.
  • 2000-2200Wind-down. The cherry 35S schedule is not as compressed as a line-MOS schedule at this rank — the watch rhythm and the SCIF day are bounded. The cherry who uses the evening to study and to PT is the cherry the senior NCO reads as serious about the career.
  • 2200Lights out. Tomorrow starts at 0500.
  • Watch / shift rotationTactical SIGINT companies and NSA-tasked floors run 24-hour watches during exercises and real-world contingencies. As a shadow you sit on the watch shift the senior collector sits — the night shift is your shift if he is the night-shift senior. The clock breaks; you sleep when the watch hands off; the morning brief is briefed by whoever has the picture at the agreed time.
  • CTC rotation (NTC, JRTC, JMRC)You move to the SIGINT shelter or tactical SCIF-equivalent at the box. The clock collapses; the watch runs 24/7; the antennas come down and go up at every jump; the OC/T from the higher echelon is grading every product that leaves the cell. A 14-day rotation feels like 30 — and your antenna setup-and-teardown muscle memory is graded every night.

Weekly Cadence

The Mon-Fri rhythm in your first 12 months as a 35S is dominated by the JQR / OJT signoff book, the IAT-II credential study, the COMSEC accountability cycle, and the team's compliance calendar. Monday is the heaviest day — the senior NCO publishes the week's watch coverage, the senior collector names the position-focus areas, and the team chief reads any compliance items on the schedule (annual training suspenses, polygraph re-scope appointments, clearance reinvestigation interviews, EKMS audit windows, brigade S2 visits). You spend Monday morning re-reading the previous Friday's senior-collector redlines on your shadow products and walking through the watch log for any items the previous week did not close. Tuesday through Thursday is the rhythm of position-shadowing and JQR drive. The senior collector is at the position; you are next to him; the JQR book is open and you are running through the line items you can demonstrate that week. Sergeant's Time Training equivalent in the cryptologic MOS often happens as senior-collector-led skill blocks — spectrum-analyzer refreshers, SDR tuning drills, antenna theory walkthroughs in the parking lot or motor pool, ICD 203 / 206 writing drills, GPS-DO discipline checks, COMSEC handling rehearsals. The cherry who shows up to those blocks with the printed standards and the redlined examples from the previous week is the cherry the senior collector reads as serious. Friday is the compliance and admin day in most teams. SF 702 walk-arounds, COMSEC destruction log review under AR 380-40, JQR signoff session with the senior collector, IAT-II credential progress check, compliance-training closeout. The senior collector inspects the JQR book on Friday in most teams — show up with the items you completed that week, ready for signoff, and the senior collector signs through. Show up with an empty week and the senior collector reads the signal. The week's other rhythm is administrative — Army-internal paperwork (DA 4187 for the BLC slot, DA 3355 for promotion points, leave requests, family-care plans for soldiers with dependents), the joint-workforce paperwork (NSA badge maintenance, parking pass renewal, team-specific badging), and the personal-conduct calendar (polygraph re-scope appointments, CV self-reporting under SEAD 3, foreign travel pre-clearance). Real-world contingencies, BCT CTC rotations, and exercise cycles compress this rhythm; when the brigade is in a sustained CTC train-up or the supported command is in operational tempo, garrison rhythm pauses and rebuilds on the other side.

Key Skills — How to Drill Each

  1. 01
    Set up and tear down a tactical SIGINT collection site — directional antennas (Yagi, log-periodic, dish), feed lines, GPS-disciplined oscillator (GPS-DO) for time / frequency reference, and the SDR / receiver chain — to the unit SOP, without a senior collector babysitting.
    The collection geometry is the job at this rank. Learn the antenna physics from the Goodfellow blocks and carry the printed SOP with you to the first site. Cable management matters — feed lines too long lose signal-to-noise; feed lines too short pull on the connector and fail at 0300. The GPS-DO time / frequency reference is what makes your timestamps mean anything across the cryptologic enterprise; lose discipline on the GPS-DO and the technical-parameter line on your products becomes worthless. Build the muscle memory by setting up and tearing down twice a week during sustainment training, not just the night before the field problem. The senior collector grades on the teardown more than the setup — a site that takes 90 minutes to set up and 30 minutes to tear down is the site of someone who knows what he is doing.
  2. 02
    Drive a spectrum analyzer well enough to identify the basic signal types in your operating area — narrowband voice, push-to-talk, cellular uplink, WiFi, SATCOM uplink / downlink, radar pulse, data-link bursts — and log what you see in the format the section requires.
    Spectrum-analysis literacy is the cherry's first earned skill. Goodfellow gives you the textbook; the operating area gives you the truth. Learn what a normal RF environment looks like in your unit's tasked geography in your first 60 days — sit next to the senior collector during shadow shifts and let him narrate. Modulation type, bandwidth, pulse repetition, center frequency, time of intercept — these are the parameters every technical report rides on. Log them in the format the section requires, not the format you remember from school. The cherry mistake is calling everything 'unknown' to avoid being wrong; the senior collector grades on confidence honestly named with the data you have. Read ATP 2-22.6 chapter on signals exploitation alongside the live spectrum and the patterns start to click around month four.
  3. 03
    Operate inside an NSA-tasked or tactical SCIF / SCIF-equivalent to AR 380-5 and ICD 705 standards — badge discipline, two-person integrity, classified discussion only inside spaces rated for it.
    The SCIF is a physically accredited space under ICD 705 with a specific authorized-use envelope. Badge worn inside, badge in the pocket outside, badge never on the gate-guard photo on Instagram. Two-person integrity means two people with their own credentials and their own awareness of what is happening — not 'my buddy is somewhere in the building.' Classified discussion stays inside the rated space; the hallway, the smoke pit, the gym, the carpool conversation all count as outside. The SSO walks the spaces weekly and the SF 702 / SF 701 trail you sign tells the truth about whether the spaces were closed correctly. The senior collector on the team will tell you within the first month who the SSO is, which space is rated to which level, and which doors you do not push without permission.
  4. 04
    Read raw signal traffic and write a one-paragraph BLUF a senior collector can put in front of the watch chief without rewriting.
    The BLUF (Bottom Line Up Front) discipline is the same in 35S as it is across the analytic community — lead with the answer, then the confidence, then the sourcing. Three sentences max for a shadow product at your level: what does the signal say (or look like, if it is a technical-parameter report), how confident are you in the call, where is the citation (USSID / serialized report / raw intercept reference per the team's published convention). Apply ICD 203 (Analytic Standards) and ICD 206 (Sourcing Requirements) from day one. The senior collector will redline your first ten products the same way; by the fourth or fifth he starts signing them through with minor edits; by the tenth he asks you to write the BLUF on his product because your habits are cleaner than his.
  5. 05
    Inventory and handle COMSEC under AR 380-40 — EKMS / KMI workflow, two-person integrity, LCMS / DTD log, the destruction line, every page accounted for.
    COMSEC accountability is the most-inspected piece of the cherry's day-to-day. The two-person integrity on keymat is two people with their own credentials witnessing each handling event — not one person and a counter-signature later. The LCMS / DTD log entries match the physical inventory; the destruction line uses the published SF 153 transfer / destruction format; every page is signed, witnessed, and accounted for. AR 380-40 governs; the unit's COMSEC custodian (typically a 25-series or a 35-series senior NCO) inspects monthly; the brigade S6 / S2 OIC inspects quarterly. A missing item is not a counseling; it is a CI investigation that costs the company a month and the SSG NCOIC his career. Treat keymat like the rifle you signed for.
  6. 06
    Pass the IAT-II prerequisites — the DoDM 8140 cyber workforce framework gates every position you are trying to qualify on, and the SIGINT side is not exempt.
    DoDM 8140 (current edition — verify) replaced the older DoD 8570 framework and aligned to the NIST NICE workforce model. Most 35S positions require IAT-II baseline within a published window of arrival; CompTIA Security+ CE is the most common entry credential funded by the unit. Army Credentialing Assistance through the ArmyIgnitED portal (verify the current portal name) pays for the voucher and prep materials. Study the official CompTIA exam objectives, work through a prep guide (Professor Messer's free video series is the standard recommendation in the joint workforce — verify it is still current), take practice tests, and test once you are ready, not when the senior NCO reminds you. The team's IAT compliance officer or the SSO can walk you through the credential reporting once you pass.

Manuals & References — What Chapters Matter

  • ATP 2-22.6 — Signals Intelligence
    The Army doctrine spine for the MOS. Read chapters on SIGINT disciplines (COMINT / ELINT / FISINT), the SIGINT process, and tactical SIGINT employment in your first month. The senior collector and the team chief quote this when grading your technical products; have the manual open during shadow shifts.
  • ATP 2-22.4 — Technical Intelligence
    Where TECHINT and SIGINT exploitation overlap on emitter characterization. Read the chapters on emitter identification and signal-of-interest characterization — the technical-parameter line on your product (modulation, bandwidth, pulse repetition, signal-of-origin characterization) is graded against this doctrine when the product rolls up to the analytic side.
  • FM 2-0 — Intelligence
    The Army's keystone intelligence doctrine. Read chapters 1-3 in your first month — the intelligence warfighting function, the operations process and intelligence integration, and the intelligence disciplines. You sit inside the SIGINT discipline, but FM 2-0 frames the whole picture and how your work fits inside the BCT / division / theater Army intelligence enterprise.
  • AR 380-5 — Department of the Army Information Security Program; AR 380-40 — Safeguarding and Controlling Communications Security Material; AR 380-67 — Personnel Security Program
    AR 380-5 is the day-to-day classified handling reg (material classification, marking, handling, transmission, destruction, SF 700 / 701 / 702 / 153). AR 380-40 governs COMSEC — half your job at this rank. AR 380-67 governs personnel security and the clearance maintenance cycle you live under. The SSO, the COMSEC custodian, the IG, and the CI office all inspect against these.
  • AR 381-10 — US Army Intelligence Activities; AR 381-12 — Threat Awareness and Reporting Program (TARP)
    AR 381-10 is the Army-side governing reg for intelligence activities, including Procedures 1-15 oversight rules for collection on US persons (read this before you ever press a key on a position). AR 381-12 is your self-reporting obligation for foreign contact, foreign travel, suspicious cyber activity, attempted elicitation, and insider-threat indicators. The reporting windows are not optional.
  • STP 34-35S — Soldier Training Publication for MOS 35S; AR 25-2 — Army Cybersecurity; DoDM 8140 — Cyberspace Workforce Qualification
    STP 34-35S is your skill-level reference — the published task list the section sergeant grades you on for the JQR. AR 25-2 is the Army cyber baseline; DoDM 8140 is the cyberspace workforce framework that gates your IAT-II credential and the position-specific qualifications you build on top. EO 12333, DoDD 5240.01, and DoDM 5105.21 (SCI Administrative Security Manual) sit over the whole stack as the national-level intelligence-activities and SCI handling authorities.

Standards — How to Hit Each

  • JQR / OJT signoff on your assigned collection position inside the published timeline — most teams expect first-position qualification inside 12-18 months.
    The JQR book is the formal record of position qualification. Each line is a specific task signed by the certified collector and dated. The team chief inspects the book monthly; the brigade or supported command quality officer audits periodically. Build the habit of asking for signoffs after specific tasks you have demonstrated, not in bulk at the end of a quarter. Keep your own copy of the JQR tracker so you know which line items remain. The senior collector who watches you sit a position for a year without driving the signoff book is not the one to blame — that is the cherry's signoff to drive.
  • IAT-II baseline credential on the DoDM 8140 list (Security+ CE is the most common entry credential funded by the unit) inside the published window.
    Most teams give cherries a window — often 6 to 12 months from arrival — to test for the IAT-II credential. Army Credentialing Assistance through the ArmyIgnitED portal funds the voucher and prep materials (verify current portal name). The team's IAT compliance officer tracks the timeline. Study early; test once you are ready; do not let the deadline slide because the senior NCO did not personally remind you. The day the deadline passes, the DoDM 8140 audit pulls you off the position until you certify.
  • TS/SCI with the CI polygraph maintained without a derogatory flag — one mishandling incident, one financial flag, one personal-conduct flag and the SSO pulls access that afternoon.
    The clearance is maintained through Continuous Vetting (CV) under SEAD 4 / Trusted Workforce 2.0 and periodic reinvestigation. Self-report under AR 381-12 and SEAD 3 on the published indicators — foreign contact, foreign travel, financial events, marriage to a foreign national, drug or alcohol incidents. The CI poly re-scope cycle is published by your unit's polygraph branch; the SSO walks you through the rhythm. Live like the clearance matters — because at this rank, in this MOS, it is the credential you carry forward into the rest of the career and the cleared-contractor market afterward.
  • ACFT 500+ floor — NSA-detail and SIGINT-shelter work is sedentary by nature; the Army standard does not move.
    500 is the bare minimum to be left alone; 540+ is where the senior NCOs stop reading you as a PT problem. Lift heavy three days a week, run intervals two days a week, focus on grip and core. The 2-mile run is the score-killer in a sedentary MOS — pull your time below 16:30 and you can afford to score moderately on the lift. The team chief and the senior NCO will not chase you on PT, but they will read the ACFT score as the discipline metric for the rest of the seat.
  • Annual SAEDA / TARP / cyber-awareness / OPSEC / insider-threat / COMSEC user / SHARP / EO training complete before the suspense — your name on the brigade non-compliance roll is the wrong way to be noticed.
    The training cycle is published by the brigade S2 / SSO / cyber-awareness shop. The portal is JKO / ALMS / the unit's specific compliance tracker — verify which one your team uses. Complete each module before the suspense date; print or screenshot the completion certificate; submit it to the team's training NCO if your team requires the manual confirmation. The senior NCO will not personally walk you through every module; he will assume you completed them and will read the non-compliance roll when it comes back from brigade.

Technical Mistakes — Concrete Consequences

  • Taking a phone, smartwatch, fitness tracker, AirPods, or any personal electronic into the SCIF or a SIGINT shelter. Even once.
    The SSO pulls access that afternoon. The CI investigation under AR 381-12 and the inquiry under AR 380-5 run months. The incident lives in your security file forever and is read at every clearance reinvestigation for the rest of your career. The team chief explains the gap to the brigade S2 OIC; the brigade S2 OIC explains it to the BCT CDR if you are tactical, or to the supported command if you are at a CMF or NSA detail. The cherry whose first month at the team included a phone-in-SCIF incident is the cherry the senior NCOs remember by name when they are pulling slate names two years later. The 30 seconds it takes to lock the device in the SCIF entry container is the 30 seconds that protects the rest of the career.
  • Logging into a SIPR, JWICS, NSANet, or GENSER terminal on someone else's account because 'they were right here.'
    Account sharing is auditable. The audit closes your access permanently and the senior operator's access for as long as the inquiry runs. The team chief writes a counseling statement, the SSO writes an incident report, and the cyber-incident reporting chain under AR 25-2 puts the event on the brigade S6 / S2 incident dashboard. The senior collector who let you log in under his credentials is also in the counseling chain — and the team's training authority pays through the inquiry window. The discipline: every keystroke under your credentials, every time.
  • Talking about what you collect, where you collect, or who you support outside the SCIF — to a girlfriend, a roommate, a bartender, the squad in the parking lot, family on the phone.
    Classified discussion outside the rated space is a security incident under AR 380-5 regardless of whether anyone outside the cleared workforce was present. The SSO writes the incident report; the senior NCO writes the counseling statement; the clearance review reads the incident in the next cycle. Foreign collection against the cryptologic workforce is real — open-source overhearing happens, and the senior NCOs have stories about exactly this. The discipline: where you work, what you target, and who you support do not leave the SCIF — not even shorthand to your roommate, your spouse, or your buddy from BCT.
  • Mishandling an EKMS / COMSEC item under AR 380-40 — keymat, fill device (DTD / SKL), crypto-ignition key — including a single break in two-person integrity or a single page unaccounted for at destruction.
    A missing or improperly destroyed COMSEC item is a CI matter, not a counseling. The unit's COMSEC custodian is read by NSA-Y / EKMS Central Office; the brigade S6 / S2 OIC writes the incident report; the company commander is called to explain; the team's COMSEC account is suspended until the inquiry closes. The cherry on the destruction line that day is named in the report. The discipline is paranoid for a reason — keymat compromise is a national-level concern, not a unit-level one.
  • Pressing a key on a collection position you are not signed-off on because 'the senior collector stepped out.'
    Unsupervised collection action without qualification gets the team's authority pulled and your career ends before E-4. The audit log catches it; the senior collector is in the counseling chain; the team chief explains the gap to the brigade and supported command. The discipline: if the senior collector stepped out and the position needs action, you call the next certified collector on the watch bill or you tell him the team needs to backfill the position. You do not press the key. The 'I was just helping' rationalization is the one the team chief has heard before and the one that ends the conversation about your career trajectory.

Career Decisions at This Rank

  • TSP enrollment under the Blended Retirement System (BRS).
    Every soldier enlisted after January 2018 is on BRS by default. The government auto-matches 1% and matches up to 4% additional if you contribute 5% of base pay. At PFC base pay the 5% contribution is real money out of a small paycheck — but it is the single highest-return decision of your first enlistment. The cryptologic community holds collectors longer than line MOSes do; soldiers who maxed TSP from PV2 forward and stayed in for a full career retire with balances that compound for thirty years afterward, on top of the cleared-contractor income they may pick up at ETS or retirement. Talk to S1 in your first week. Default to 5%; raise to the IRS limit when you can.
  • BLC packet timing and slot pursuit.
    BLC (Basic Leader Course) is the prerequisite to pin SGT under AR 600-8-19 and the first NCO Academy gate. For 35S soldiers, the BLC slot is harder to get than line-MOS peers expect because the senior NCOs at your team are reluctant to release you for 22 days when you are sitting an unsupervised position the team spent 12-18 months qualifying you on. Open the packet conversation with your section sergeant 12 months before you need the slot. The trade-off is real: you lose three weeks of position time and the team backfills the seat. The team chief reads whether the packet was driven by you or chased by the senior NCO. Do not skip BLC because the timing is hard — the SGT board moves regardless of your readiness, and the soldier without BLC at the cutoff is the soldier who sits in zone.
  • IAT-II credential study and timing — Security+ CE typically.
    The IAT-II baseline credential is the DoDM 8140 gate to most 35S positions. Most teams give cherries 6-12 months to test. Army Credentialing Assistance through the ArmyIgnitED portal (verify current portal name) funds the voucher and prep materials. Study early — the cherry who treats the credential as a Year One priority is the cherry whose JQR pipeline does not stall when the audit window approaches. Once you pass Security+ CE, the next conversation is the IAT-III credential (CISSP-Associate, CASP+, GIAC, or platform-specific equivalents on the DoDM 8140 list) — for most cherries that conversation is at E-4 or E-5, but the soldier who tests early earns currency with the team and the senior NCO. The trap: failing the test and not retesting promptly. The team chief and the senior NCO read the gap; do not let one failure become a six-month delay.
  • Volunteer for the DLI language program if you have an aptitude DLAB score that supports it.
    35S is not a language-coded MOS by default — that is the 35P (Cryptologic Linguist) seat — but a 35S with a controlled language and a current DLPT score (per DoDI 1340.27) carries the Foreign Language Proficiency Bonus (FLPB) and opens different national-detail seats over a career. The Defense Language Institute Foreign Language Center (DLIFLC, Presidio of Monterey) runs the Army's residential language pipeline. The trade-off for DLI: time away from your unit (6 months for Spanish / French / Indonesian-tier through ~64 weeks for the hardest languages — Arabic, Korean, Mandarin), but you come back with a language, an FLPB monthly check, and a path into theater intel brigade or national-detail seats. Talk to the brigade language program manager and your section's WO before volunteering — for 35S, the path is less standard than for 35P and the slot allocation runs differently.
  • Off-post move and clearance / lifestyle math.
    Junior 35S soldiers in the barracks often want off-post the moment BAH math allows. The honest considerations: the TS/SCI with CI poly does not appreciate roommates with messy lifestyles (recreational drug use in your residence is a TARP / SEAD 3 reporting matter regardless of who is using); foreign-national roommates or romantic partners require self-reporting under SEAD 3 and additional CI / SSO coordination; off-post residence in a high-crime area surfaces in financial / criminal indicators on Continuous Vetting before you self-report. None of this means you cannot have a life — it means your lifestyle is part of the job. The married analyst with on-post housing has the cleanest CV profile; the single analyst off-post with a stable lease and a clean financial pattern has the second-cleanest. The single analyst chain-rotating roommates in a party-house off-post is the analyst the SSO sees most often.

How the Seat Varies by Unit Type

  • Tactical SIGINT company inside a BCT MI battalion (IBCT / SBCT / ABCT)
    The most common first assignment. You sit on the BCT MI battalion's SIGINT company, you support the BCT's training and operational rhythm, and the CTC rotation (NTC for ABCT / SBCT, JRTC for IBCT / light, JMRC for the Europe-stationed BCTs) is the most informationally-dense event of your first enlistment. You will set up antennas in the desert, in the woods, in the snow, and in a city block — the geometry is real and the senior collector grades on it nightly. The signal environment is tactical (push-to-talk voice, narrowband data, basic SATCOM, electronic warfare emissions). The shop is small enough that everyone knows your name by month two. The good news: you get a lot of reps on the iron. The honest news: you sit at the tactical end of the cryptologic enterprise, and the strategic / IC-level technical-exploitation skills come later.
  • 706th MI Group at Fort Meade (NSA / CSS Washington)
    The 706th is the Army element co-located with NSA-Washington at Fort Meade. As a cherry 35S you sit on a Service Cryptologic Element team alongside Navy CTRs, Air Force 1N3 / 1N4 airmen, Marine signals soldiers, NSA civilians (GS-12 / GS-13 / GS-14), and cleared contractors. The technical work is national-IC-tilted and the floor culture is closed-access and compartmented. The senior NCO and warrant bench is deep. The cost: Fort Meade BAH is high, the cost of living in the DMV (DC-Maryland-Virginia) is high, and the commute inside the NSA campus is real. The cherry experience here is more analytic / national-IC oriented than tactical.
  • 780th MI Brigade at Fort Eisenhower (formerly Fort Gordon, renamed 2023) — co-located with NSA / CSS Georgia
    The 780th is the Army cyber brigade, with significant SIGINT collection alongside the offensive cyber mission. Co-located with NSA / CSS Georgia at Fort Eisenhower. The 781st MI Battalion (Vanguard) and the 782nd MI Battalion (Cerberus) sit under the 780th. The senior NCOs treat the sign on the gate as the least interesting thing about the unit — what matters is which battalion and which mission set you sit on. The technical work is heavily SIGINT-tilted, the joint workforce is dense, and the senior NCO and warrant bench is deep. Cost of living is lower than Fort Meade; the on-post housing inventory is better; the Augusta area is a real military community.
  • Regional MI brigade (470th JBSA-Fort Sam Houston / SOUTHCOM, 500th Schofield / INDOPACOM, 501st Korea, 66th Wiesbaden / EUCOM)
    Theater intel brigades sit at the operational-strategic seat in the Army intel architecture. You work theater-level cryptologic problems for a CCMD J2, not BCT-level problems for a BCT S2. The shop is bigger, the products are bigger, the audience is bigger, and the analytic / technical standards (ICD 203 / 206) are applied more rigorously because the products move into the national IC. Less common for a cherry first assignment but possible — typically requires a follow-on, an SIG-aptitude profile, or an HRC-directed slot. The trade-off: less tactical OPTEMPO, more analytic rigor, and a different career arc into national-detail or NSA-civilian space over time.
  • National detail — NSA / CSS, INSCOM HQ at Fort Belvoir, or Cyber Mission Force support via 780th
    Rare at this rank. Most national-detail seats go to soldiers with a language, a specific technical-skill identifier, a follow-on school, or an HRC-directed assignment. The work is national-IC technical-collection work; the team you sit on may have one or two Army uniformed soldiers and a much larger civilian bench. The cherry experience here is unusual — you are the junior member of a technical-collection line that is grading itself against IC standards every day, and the senior NSA civilian is your senior collector in practice. The Army NCO chain feels distant; the team chief at NSA is your daily reality. Most cherries on national detail go through a TDA training-and-mentorship cycle before they sit unsupervised positions.

What Good Looks Like at This Rank

The good cherry 35S is the PFC the senior collector brings to the morning brief because the BLUF on his shadow product was right, the frequency / time / signal-of-interest log was clean, the GPS-DO discipline on the time / frequency reference was square, and the antenna teardown the night before was tighter than the setup. She showed up to Goodfellow with the academic discipline to grind through the RF / SDR / spectrum-analysis blocks, she walked off the bus at Fort Meade or Fort Eisenhower or Bragg with the JQR book in her ruck and the IAT-II prep study guide already half-read, and she treated the first six months as the apprenticeship the senior NCOs say it is rather than the holding pattern the cherry brain wants it to be. By month nine the JQR book is half done; by month twelve the IAT-II credential is on the wall; by month eighteen she is sitting an unsupervised position and the team chief mentions her by name at the Service Cryptologic Element shift turnover. She is not the loudest soldier in the SCIF. She does not argue with the senior collector in front of the team. She runs the unglamorous work — the COMSEC destruction line, the SF 702 walk-around, the two-person integrity walks on EKMS, the annual compliance training, the antenna teardown on a cold morning at NTC — without being chased, and when the senior NCO checks behind her the work is done correctly. She asks the question before she presses the key, not after, and the senior collector learns within the first quarter that the cherry will not improvise. The warrant on the team (a 351M Human Intelligence technician, 352N SIGINT analysis technician, or 353T MI systems integrator, depending on the lane and the current 35-series warrant designation set) starts asking her what she is reading on her own time — and the cherry has an answer, because she is reading the ATP 2-22.6 chapters the team chief mentioned in passing at the last shift turnover. The first re-enlistment window finds her with an IAT-II credential current, a clean JQR book, an unsupervised collection-position qualification signed off, an ACFT she can defend to the senior NCO on a ruck, and the BLC packet conversation already opened. The senior NCO read of her at the E-4 board cycle is set in this 18-24 month window — the foundation she lays as a cherry is the resume the brigade S2 SGM and the team chief will read at her first promotion gate. She has not done anything heroic; she has done the boring thing exactly the same way every day, and the senior cryptologic workforce notices.

Preview — The Next Rank

E-4 SPC / CPL is the next gate, and it is structurally tighter than the E-3 promotion gate. AR 600-8-19 governs: 24 months TIS / 6 months TIG (waivable), DA 3355 promotion-points worksheet, BLC complete or slotted, command recommendation, cutoff score above the MOS-specific monthly line per the HRC MILPER. For 35S specifically, the BLC slot is the long pole — the team is reluctant to release you for 22 days, the regional NCO Academy schedule is competitive, and the senior NCO read of you weighs heavily on which soldier gets the next available slot. Plan the packet 12 months out. The job content at E-4 is the qualified collector — you sit unsupervised positions, you drive the SDR / spectrum-analyzer / antenna chain end-to-end, you produce the technical-parameter reports the analyst desk (35N, 35F) and the supported command consume downstream, you handle the RFI cycle with the supported customer, and you are the bench when the senior collector is on leave or at a school. You also become the Army-side mentor for the next cherry who walks off the bus from Goodfellow — the JQR book you are now closing, you will help the next PFC start. The differentiator at E-4: a second collection position under qualification, the IAT-III credential conversation (CISSP-Associate, CASP+, GIAC, CCNP-Security or platform-specific equivalents depending on the team), and the BLC graduate status that opens the SGT board conversation. The other change at E-4: you start carrying real Army-internal load alongside the joint-workforce position. NCOER input cycles begin (you write input on yourself for your rater); DA 4187 paperwork for school slots, schools, and re-assignments is now your responsibility; the next re-enlistment math arrives; the cross-MOS conversations (35N / 35P / 35Q / 17C / 350F / 352N) become more concrete; and the senior NCO and team chief read of you starts forming the slate names that will determine your E-5 board competitiveness. The cherry phase is over by E-4; the SGT-bench phase begins. The Specialists who built clean JQR books, clean compliance records, clean ACFT scores, and clean re-enlistment math at this rank are the Specialists who pin SGT on the next cycle the points clear.
FAQ

35S E1-E3 — Frequently Asked Questions

Q01What does a E1-E3 35S (Signals Acquisition/Exploitation Analyst) actually do?
You came out of the 35S AIT pipeline at Goodfellow AFB in San Angelo — the joint cryptologic schoolhouse where Army, Navy, Air Force, and Marine signals soldiers all run through the same 25+ week course on RF theory, spectrum analysis, software-defined radio (SDR) operation, and signals-of-intelligence-interest identification.
Q02What's the most important thing to know as a E1-E3 35S?
AIT for 35S is at Goodfellow AFB in San Angelo, Texas — the DoD joint cryptologic schoolhouse where Army, Navy, Air Force, and Marine signals collectors all run through the same 25-plus-week pipeline on RF theory, spectrum analysis, software-defined-radio (SDR) operation, and signals-of-interest identification.
Q03What does a typical day look like for a E1-E3 35S?
Time-blocked day at the E1-E3 35S rank tier: 0500 Wake. Coffee. Quick phone check — accountability OK, no soldier emergencies, no overnight team chat from the senior NCO. Phone goes back in the kitchen drawer because it is not going anywhere near the SCIF or the shelter. PT uniform on, 0530 PT formation at the MI company area or the team's designated PT pad. MI / cryptologic companies often run PT on a slightly delayed schedule to align with the team's watch rhythm. Accountability to the section sergeant; the senior NCO reads the formation, 0545-0700 Unit PT — rotates through cardio days,…
Q04What mistakes get E1-E3 35S soldiers fired or relieved?
Bringing a personal electronic device into the SCIF or a SIGINT shelter — phone, smartwatch, fitness tracker, AirPods, wireless earbuds. Even once. The SSO pulls your access that afternoon, the CI investigation under AR 381-12 runs months, and the incident lives in your security file forever. The clearance may survive; the senior NCO read of you does not; DUI / drug pop / Article 15 / off-post arrest with a TS/SCI on the line.…
Q05What career decisions matter most at the E1-E3 35S rank tier?
TSP enrollment under the Blended Retirement System (BRS) — Every soldier enlisted after January 2018 is on BRS by default. The government auto-matches 1% and matches up to 4% additional if you contribute 5% of base pay. At PFC base pay the 5% contribution is real money out of a small paycheck — but it is the single highest-return decision of your first enlistment. The cryptologic community holds collectors longer than line MOSes do; soldiers who maxed TSP from PV2 forward and stayed in for a full career retire with balances that compound for thirty years afterward,…
Q06What's next after E1-E3 for a 35S (Signals Acquisition/Exploitation Analyst) in the Army?
E-4 SPC / CPL is the next gate, and it is structurally tighter than the E-3 promotion gate.
Q07What manuals and regulations does a E1-E3 35S need to know cold?
ATP 2-22.6 — Signals Intelligence (the doctrine spine for the MOS; read it the first month).; FM 2-0 — Intelligence (the umbrella; chapters 1-3 in your first 30 days).; AR 380-5 — Department of the Army Information Security Program.

This playbook has no tips yet. Be the first to share what you know.

Published by the Honest MOS Editorial DeskVerified against DoD/.gov sourcesUpdated May 2026Editorial standards