Security Operations Center Manager
About The Position
We are seeking an experienced Security Operations Center Manager to lead day-to-day security operations within our Detection and Response program. This role exists to ensure our SOC executes consistently and decisively when it matters most. You will own the operating rhythm of security operations, ensuring high-quality investigations, sustainable coverage, consistent escalation decisions, and clean shift handoffs. You will set the standard for how the SOC operates and how it performs during high-pressure moments. This is a hands-on people manager role. You will be expected to make technical contributions that strengthen the organization’s overall security posture while building and developing a strong SOC team.
Requirements
- 5+ years of experience in security operations, incident response, detection and response, or security engineering.
- Experience leading SOC or shift operations as a manager, team lead, or equivalent.
- Demonstrated experience operating in or building a 24/7 security operations environment.
- Hands-on experience investigating security events across endpoint, identity, cloud, and network telemetry.
- Experience leading incident response efforts during high-severity events.
- Working proficiency in at least one programming or scripting language.
- Strong operational judgment and the ability to make sound escalation decisions under pressure.
- Experience defining and using operational metrics to manage performance and drive improvements.
- Proven ability to hire, develop, and manage technical teams.
- Strong written communication and documentation skills.
Nice To Haves
- Experience working within or building on top of a centralized security data lake or large-scale data platform.
- Experience building reliable detections that hold up in production environments.
- Experience automating repetitive operational work and reducing manual investigation effort.
- Experience translating investigation findings into durable improvements across the security program.
- Interest in exploring AI-driven automation to improve investigation quality and response speed.
Responsibilities
- Design, build, and mature a sustainable 24/7 security operations model with resilient coverage across time zones and after-hours periods.
- Ensure sustainable workload balance and consistently high-quality investigations.
- Own and enforce standards for investigation quality, incident management, documentation, and escalation.
- Serve as the technical escalation point and lead response during high-severity incidents.
- Identify and lead initiatives that materially improve SOC performance, tooling, and operational maturity.
- Hire, onboard, coach, and manage performance of SOC analysts.
- Define and track SOC performance metrics and use them to drive operational improvements.
- Coordinate cross-functionally during significant incidents and drive post-incident follow-through.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
