Public Service Manager II - Security Operations Center (SOC) Manager

Department of Administrative and Financial Services•Augusta, GA

11d•Hybrid

About The Position

As the Security Operations Center (SOC) Manager, you’ll lead MaineIT’s enterprise cybersecurity operations program, overseeing the teams, technologies, and processes responsible for detecting, analyzing, and responding to cyber threats targeting the State of Maine. This is far more than a traditional SOC leadership role. You’ll oversee a multi-functional cyber defense operation that includes security monitoring, vulnerability management, endpoint security, threat intelligence, physical security operations, and incident response coordination. Reporting directly to the Deputy Chief Information Security Officer (CISO), this position plays a critical role in protecting the systems and services relied upon by agencies and citizens across Maine state government. This is a unique opportunity to mature and modernize enterprise cyber defense capabilities while leading a highly visible operational security program with statewide impact. MaineIT is seeking a highly creative Security Operations Center Manager who will represent our core CARE values in all that they do. At MaineIT, our CARE values represent how we: Practice Customer-focus, ensuring that our customers are heard, and their needs are met. Hold ourselves to a high level of Accountability by being transparent with our stakeholders. Maintain an effective level of Responsiveness by providing timely updates in a proactive manner. Strive to provide Empathy driven, people-focused services by applying emotional intelligence skills and behaviors. Hybrid Work Opportunity – This position has the potential to work from home as much as 90% of the time with management approval.

Requirements

Bachelor’s degree in computer science, information technology, cybersecurity, or a related field
A minimum of 5 years of experience in cybersecurity, information security, or security operations roles
at least 3 years in a managerial or leadership capacity overseeing technical cybersecurity teams.

Nice To Haves

Certifications such as CISSP, GIAC, GCIA, GCIH, CISM, CEH, or similar credentials.
Demonstrated experience leading security operations, incident response, threat detection, or cyber defense programs in an enterprise environment.
Strong understanding of cybersecurity frameworks and standards including the National Institute of Standards and Technology (NIST) SP 800 series guidance.
Experience working with SIEM platforms, endpoint security technologies, intrusion detection/prevention systems, vulnerability management platforms, cloud security monitoring capabilities, physical security operations capabilities, and enterprise platforms such as Microsoft Defender, Trellix, Splunk, Microsoft Sentinel, Rapid7, AppScan, or comparable technologies.
Experience coordinating cybersecurity incidents, operational escalations, physical security-related security operations escalations, and cross-functional response efforts.
Experience in cloud security operations, detection engineering, threat hunting, automation, public-sector cybersecurity environments, or physical security operations within an enterprise security operations program.

Responsibilities

Lead Cyber Defense Operations: Manage and mentor technical leads, analysts, interns, and contracted professionals responsible for enterprise security monitoring and response operations.
Drive Threat Detection & Monitoring: Oversee SIEM, endpoint detection and response (EDR), intrusion detection/prevention systems, cloud security monitoring, physical security monitoring integrations, and operational alerting capabilities.
Coordinate Incident Response: Lead cybersecurity incident investigations, containment activities, escalations, recovery efforts, after-action reviews, and post-incident improvement initiatives.
Oversee Vulnerability Management: Guide enterprise vulnerability identification, prioritization, remediation coordination, and operational risk reduction efforts.
Advance Threat Intelligence: Support proactive threat analysis, intelligence integration, threat hunting, and detection engineering activities to improve enterprise visibility.
Strengthen Operational Readiness: Enhance response playbooks, operational processes, automation capabilities, 24x7x365 escalation readiness, and cyber resilience initiatives across the environment.
Collaborate Across Government: Partner with infrastructure teams, application teams, agency leadership, vendors, and business stakeholders to align security operations with operational needs and serve as a key operational liaison during cybersecurity incidents by communicating risks, impacts, response actions, and operational updates.
Develop Operational Metrics: Define, track, and report SOC KPIs, KRIs, dashboards, executive reporting, situational awareness, and operational insights that help leadership make informed cybersecurity decisions.
Support Workforce Development: Foster analyst growth, technical mentoring, operational maturity, and continuous learning throughout the security operations program.

Benefits

13 paid holidays
12 days of sick leave
3+ weeks of vacation leave annually
Health Insurance Coverage – The State of Maine pays 85%-100% of employee-only premiums
Health Insurance Premium Credit
Dental Insurance – The State of Maine pays 100% of employee-only dental premiums
Retirement Plan – The State of Maine contributes 18.91 % of pay to the Maine Public Employees Retirement System (MainePERS)
Gym Membership Reimbursement – up to $40 per month
Health and Dependent Care Flexible Spending Accounts
Public Service Student Loan Forgiveness
Living Resources Program – employee assistance program
Parental leave – forty-two (42) consecutive calendar days of fully paid parental leave
Voluntary Deferred Compensation – MaineSaves 457(b) account