SOC Operations Manager

About The Position

Requirements

• 10+ years of experience in cybersecurity
• 5+ years of experience supporting Security Operations Centers, Incident Response, or Cyber Defense Operations
• Experience managing SOC operations, including workforce planning, shift management, and analyst supervision
• Experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, or security monitoring technologies
• Knowledge of security monitoring, incident response, threat detection, escalation procedures, and cyber defense operations
• Ability to coordinate and lead response activities during major cybersecurity incidents
• Top Secret clearance
• Bachelor’s degree

Nice To Haves

• Experience developing SOC standard operating procedures (SOPs), playbooks, runbooks, and operational workflows
• Experience with ServiceNow, Jira, or similar ticketing and workflow management systems
• Experience managing analyst training programs, workforce development initiatives, and career progression plans
• Ability to analyze operational trends and implement process improvements to enhance SOC effectiveness and efficiency
• Ability to brief technical teams, executives, and government stakeholders
• Possession of excellent written and verbal communication skills
• CISSP, CISM, GSOM, GCIH, GCIA, GCED, Security+, or equivalent certification

Responsibilities

• Lead day-to-day Security Operations Center (SOC) activities for 24x7 security monitoring, detection, response, and escalation functions.
• Manage SOC personnel, including Tier 1, Tier 2, and Tier 3 analysts.
• Ensure continuous operational readiness, process maturity, and service delivery excellence across all customer enterprise environments.
• Manage workforce management, shift scheduling, and analyst performance.
• Coordinate incident response activities.
• Provide operational reporting.
• Act as the designated point of contact for SOC operations, customer engagement, service delivery issues, and major incident escalations.
• Develop and maintain 24x7 staffing plans, shift schedules, on-call rotations, and surge support capabilities.
• Oversee Tier 1–3 analyst activities.
• Manage incident handling processes.
• Ensure adherence to SLAs and operational metrics.
• Drive continuous improvement initiatives across SOC operations.
• Coordinate with Threat Intelligence, Threat Hunting, Engineering, Vulnerability Management, and Incident Response teams.

Benefits

• health, life, disability, financial, and retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program