Job Title: Cyber Security SOC Manager
Duration: 6 months
Location: Remote (US Region Only)
Position Overview:
We are seeking an experienced Cyber Security SOC Manager to lead and manage the daily operations of our Security Operations Center (SOC). This role will involve managing a team of analysts, monitoring security events, responding to incidents, and continuously enhancing the organization’s security posture. The ideal candidate will have strong technical expertise in cybersecurity, leadership experience, and a calm demeanor in high-pressure situations.
Key Responsibilities:
SOC Leadership and Management:
- Oversee SOC team operations, including scheduling, training, mentoring, and performance evaluation.
- Develop and implement SOC processes, procedures, and playbooks for efficient security operations and incident response.
- Maintain a shift schedule for 24/7/365 SOC coverage, ensuring proper staffing levels.
Security Monitoring and Incident Response:
- Lead monitoring and analysis of security events from SIEM, IDS/IPS, EDR, and cloud platforms.
- Coordinate with stakeholders to contain, remediate, and resolve security incidents.
- Conduct post-incident analysis, identify root causes, and implement improvements.
SOC Strategy and Development:
- Develop SOC performance metrics and reporting mechanisms to monitor and improve efficiency.
- Continuously assess SOC operations and recommend technology, process, and staffing improvements.
- Stay updated with emerging threats, attack techniques, and industry best practices to enhance SOC effectiveness.
Team Collaboration and Communication:
- Report SOC activities and incident response progress to senior management and stakeholders.
- Collaborate with cybersecurity teams like CSIRT, Threat Hunt, Threat Intelligence, and Vulnerability Management to improve the overall security posture.
Required Qualifications:
- Education: Bachelor's degree in Computer Science, Information Security, or a related field; equivalent experience will be considered.
- Experience: Minimum of 5-7 years of experience in cybersecurity, with 2-3 years in a SOC environment and 1-2 years in a leadership role.
- Technical Expertise: Strong knowledge of SOC operations, security monitoring, incident response, and SIEM technologies.
- Security Technologies: Hands-on experience with tools like EDR, IDS/IPS, firewalls, and cloud security solutions.
- Certifications: Industry-recognized certifications, such as CISSP, CISM, GIAC, or CEH, are preferred.