SOC Manager
About The Position
The SOC Manager is responsible for the operational leadership of the Everforth Security Operations Center. This role oversees the daily operations of the SOC analyst team responsible for enterprise security monitoring, alert investigation, threat detection, and incident response. The SOC Manager ensures consistent operational execution, maintains investigation quality, manages analyst performance, and ensures the SOC delivers reliable enterprise security monitoring across all Everforth business segments. The SOC Manager reports directly to the SOC Director and works closely with security engineering, IT operations, and enterprise security leadership to ensure effective threat detection and response.
Requirements
- Minimum of seven years of experience in security operations or SOC environments.
- Demonstrated experience managing or leading SOC analysts or security operations teams.
- Strong understanding of SOC operations, alert triage, investigation methodologies, and incident response processes.
- Experience working with enterprise security technologies such as SIEM platforms, EDR platforms, security telemetry sources, and security automation tools.
- Proven ability to lead or coordinate security investigations and incident response activities.
- Experience developing and maintaining SOC operational procedures, playbooks, and escalation workflows.
- Strong ability to communicate technical findings to security leadership, IT teams, and business stakeholders.
- Able and willing to obtain a US Security Clearance.
- This role may require occasional on-call support during off-hours to respond to security incidents.
Responsibilities
- Oversee daily SOC operations, ensuring effective monitoring, investigation, and response to security alerts and incidents across enterprise environments.
- Lead, mentor, and manage SOC analysts, providing guidance on investigations, escalation procedures, and threat analysis techniques.
- Ensure consistent execution of SOC processes, playbooks, and investigation procedures across all monitoring activities.
- Coordinate enterprise incident response activities, ensuring appropriate escalation, communication, and resolution of cybersecurity incidents.
- Maintain high investigation standards by reviewing analyst work, validating incident classifications, and ensuring accurate documentation.
- Track and report SOC operational metrics such as alert volumes, investigation throughput, detection efficiency, and response times.
- Develop, refine, and enforce SOC operational procedures, playbooks, and investigation workflows.
- Work closely with security engineering, IT operations, and infrastructure teams to support investigation and response activities.
- Coordinate with the MSSP responsible for after-hours Tier 1 monitoring to ensure proper escalation, investigation continuity, and operational alignment.
- Maintain situational awareness of emerging threats and ensure relevant alerts, indicators, and investigation priorities are communicated to the SOC team.
- Ensure SOC staffing, shift coverage, and operational processes support enterprise monitoring requirements.
- Identify opportunities to improve detection coverage, investigation efficiency, and SOC operational maturity.
- Ensure analysts maintain strong investigative and technical capabilities through continuous training and development programs.
Benefits
- General Description of Benefits [https://ecstech.com/careers/benefits]
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
Education Level
No Education Listed
