SOC Project Manager

About The Position

Requirements

• Bachelor’s degree in Information Technology or equivalent experience.
• Minimum ten (10) years of experience in IT Security or Information Technology.
• At least 5 years of experience in cybersecurity incident response in environments with 50,000+ endpoints.
• A minimum of 3 years of experience running a Security Operations Center, preferably a SOC managing both on-premises and cloud environments.
• In-depth knowledge and hands-on experience with the NIST Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover).
• Strong leadership, problem solving and critical thinking skills.
• Ability to prioritize and execute autonomously.
• Strong understanding of latest security principles and protocols.
• Strong understanding of security operations technologies including SIEM and orchestration.
• Knowledge in emerging technologies and tactics used within a SOC and how they are applied to improve efficiency and effectiveness.
• Understanding of tactics, techniques and procedures associated with cyber threats.
• Proven experience in deploying, operating, and optimizing SOC tools and technologies.
• Excellent communication skills, with the ability to effectively convey complex technical information to both technical and non-technical stakeholders.
• Familiarity with federal cybersecurity regulations and compliance requirements.
• Prior experience in the health domain.
• Must have experience supporting a Government agency.
• Must be a US Citizen.

Nice To Haves

• Certifications such as CISSP, CISM, or equivalent.
• Experience with cloud environments and cloud security technologies.
• Background in federal health sectors or similar highly regulated industries.

Responsibilities

• Ensure that SOC operations are managed according to best business practices and Project Management International (PMI) standards.
• Continuously monitor the performance of SOC staff in conjunction with the Contract Service Level Agreements (SLAs), including program progress, risks, issues, and proposed resolutions.
• Direct, execute, and control all elements of contractor provided SOC services and ensure that all necessary management, analysis, business, contracts, engineering, implementation, and maintenance personnel resources are available and enough, both in numbers and in qualifications, to perform all required tasks.
• Exchange information and communicate with the Government Cyber Operations personnel and Contract Officer Representative (COR) as necessary.
• Execute and provide information on the activities and milestones completed and deliverables submitted to support program reporting.
• Identify and communicate potential schedule variance, mitigation strategies, and actions taken.
• Identify and communicate issues encountered and resolution applied.
• Track and communicate information related to unresolved issues as well as their current status and actions taken.
• Establish milestones and activities that are planned for the next reporting period.
• Conduct policy and technical document reviews.
• Develop security configuration standards, standard operating procedures, and checklists, and provide updates supporting the daily activities.
• Provide requested metrics and artifacts to support reporting and audit requests.
• Track schedules including milestones and deliverables.
• Maintain risk registers and risk and issue mitigation strategies for all risks.
• Provide a plan to monitor and track program and task performance to ensure on time service delivery.
• Resolve management and programmatic issues.
• Develop staff of varying skill levels on both cybersecurity competencies/expertise and personal development.
• Guide in their continued growth and success as individuals and as a team.
• Participate in the development and tracking of key performance indicators (KPIs) related to SOC operations, to benchmark and further enhance capabilities.
• Perform special projects and other duties as assigned.
• Oversee the day-to-day operations of the Security Operations Center, ensuring all processes and responses are conducted efficiently and effectively.
• Implement and maintain SOC policies, procedures, and processes to ensure comprehensive monitoring and incident response capabilities.
• Develop and manage key performance indicators (KPIs) to measure SOC effectiveness and provide regular reports to executive leadership.
• Lead the incident response team to manage and mitigate cybersecurity incidents, including reporting and following up on security events.
• Ensure prompt detection, analysis, containment, eradication, and recovery from security incidents.
• Coordinate post-incident reviews to identify lessons learned and propose improvements.
• Oversee and manage activities related to all five portions of the NIST Cybersecurity Framework—Identify, Protect, Detect, Respond, and Recover.
• Ensure compliance with federal regulations and customer requirements.
• Develop and maintain comprehensive documentation on SOC processes and procedures.
• Lead and mentor a team of cybersecurity analysts and engineers, providing guidance, training, and professional development opportunities.
• Recruit, hire, and retain top talent to support the strategic goals of the SOC.
• Serve as the primary point of contact for stakeholders, ensuring clear communication and understanding of SOC activities and initiatives.
• Manage and optimize the deployment and use of SOC tools, including SIEM, endpoint detection and response (EDR), threat intelligence platforms, and other security technologies.

Benefits

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
• Cutting-edge technology you can learn from
• Paid vacation and holidays
• Paid parental, military, bereavement and jury duty leave
• Short and long-term disability benefits
• Life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance