Public Service Manager II - Security Operations Center (SOC) Manager

State of Maine•Augusta, ME

1d•$85,686 - $121,081•Hybrid

About The Position

As the Security Operations Center (SOC) Manager, you will lead MaineIT’s enterprise cybersecurity operations program. This role oversees the teams, technologies, and processes responsible for detecting, analyzing, and responding to cyber threats targeting the State of Maine. It encompasses a multi-functional cyber defense operation including security monitoring, vulnerability management, endpoint security, threat intelligence, physical security operations, and incident response coordination. Reporting to the Deputy Chief Information Security Officer (CISO), this position is critical in protecting the systems and services used by agencies and citizens across Maine state government. This is an opportunity to mature and modernize enterprise cyber defense capabilities while leading a highly visible operational security program with statewide impact. The ideal candidate will represent MaineIT’s CARE values: Customer-focus, Accountability, Responsiveness, and Empathy.

Requirements

Bachelor’s degree in computer science, information technology, cybersecurity, or a related field.
A minimum of 5 years of experience in cybersecurity, information security, or security operations roles.
At least 3 years in a managerial or leadership capacity overseeing technical cybersecurity teams.

Nice To Haves

Certifications such as CISSP, GIAC, GCIA, GCIH, CISM, CEH, or similar credentials.
Demonstrated experience leading security operations, incident response, threat detection, or cyber defense programs in an enterprise environment.
Strong understanding of cybersecurity frameworks and standards including the National Institute of Standards and Technology (NIST) SP 800 series guidance.
Experience working with SIEM platforms, endpoint security technologies, intrusion detection/prevention systems, vulnerability management platforms, cloud security monitoring capabilities, physical security operations capabilities, and enterprise platforms such as Microsoft Defender, Trellix, Splunk, Microsoft Sentinel, Rapid7, AppScan, or comparable technologies.
Experience coordinating cybersecurity incidents, operational escalations, physical security-related security operations escalations, and cross-functional response efforts.
Experience in cloud security operations, detection engineering, threat hunting, automation, public-sector cybersecurity environments, or physical security operations within an enterprise security operations program.

Responsibilities

Lead Cyber Defense Operations: Manage and mentor technical leads, analysts, interns, and contracted professionals responsible for enterprise security monitoring and response operations.
Drive Threat Detection & Monitoring: Oversee SIEM, endpoint detection and response (EDR), intrusion detection/prevention systems, cloud security monitoring, physical security monitoring integrations, and operational alerting capabilities.
Coordinate Incident Response: Lead cybersecurity incident investigations, containment activities, escalations, recovery efforts, after-action reviews, and post-incident improvement initiatives.
Oversee Vulnerability Management: Guide enterprise vulnerability identification, prioritization, remediation coordination, and operational risk reduction efforts.
Advance Threat Intelligence: Support proactive threat analysis, intelligence integration, threat hunting, and detection engineering activities to improve enterprise visibility.
Strengthen Operational Readiness: Enhance response playbooks, operational processes, automation capabilities, 24x7x365 escalation readiness, and cyber resilience initiatives across the environment.
Collaborate Across Government: Partner with infrastructure teams, application teams, agency leadership, vendors, and business stakeholders to align security operations with operational needs and serve as a key operational liaison during cybersecurity incidents by communicating risks, impacts, response actions, and operational updates.
Develop Operational Metrics: Define, track, and report SOC KPIs, KRIs, dashboards, executive reporting, situational awareness, and operational insights that help leadership make informed cybersecurity decisions.
Support Workforce Development: Foster analyst growth, technical mentoring, operational maturity, and continuous learning throughout the security operations program.

Benefits

13 paid holidays
12 days of sick leave
3+ weeks of vacation leave annually
Health Insurance Coverage (State pays 85%-100% of employee-only premiums)
Health Insurance Premium Credit (Participation decreases employee-only premiums by 5%)
Dental Insurance (State pays 100% of employee-only dental premiums)
Retirement Plan (State contributes 18.91% of pay to MainePERS)
Gym Membership Reimbursement (up to $40 per month)
Health and Dependent Care Flexible Spending Accounts
Public Service Student Loan Forgiveness eligibility
Living Resources Program (employee assistance program)
42 consecutive calendar days of fully paid parental leave (for all employees welcoming a child)
Voluntary Deferred Compensation (MaineSaves 457(b))