SOC Manager
Apply on
Position Overview: The Cyber Security SOC Manager will be responsible for leading and managing the day-to-day operations of the Security Operations Center (SOC). This role involves overseeing a team of analysts, ensuring efficient detection, response, and mitigation of security incidents, and continuously improving the organization s security posture. The ideal candidate will possess a strong technical background, leadership skills, and the ability to handle high-pressure situations.
Key Responsibilities:
SOC Leadership and Management:
o Manage the SOC team, including scheduling, training, mentoring, and performance evaluation.
o Define and implement SOC processes, procedures, and playbooks to ensure efficient security operations and incident response.
o Maintain a shift schedule to provide 24/7/365 coverage, ensuring optimal staffing levels for the SOC.
Security Monitoring and Incident Response:
o Oversee the monitoring and analysis of security events and alerts from various sources, such as SIEM, IDS/IPS, endpoint protection, and cloud platforms.
o Coordinate with internal and external stakeholders to contain and remediate incidents effectively.
o Conduct post-incident analysis to identify root causes and drive improvements in incident response processes.
SOC Strategy and Development:
o Develop and implement SOC performance metrics and reporting mechanisms.
o Continuously evaluate the effectiveness of SOC operations and recommend improvements in technology, processes, and staffing.
o Stay current with emerging security threats, attack techniques, and industry best practices to ensure the SOC remains effective.
Team Collaboration and Communication:
o Communicate SOC activities and incident response progress to senior management and stakeholders.
o Collaborate with other cybersecurity teams, such as CSIRT, Threat Hunt, Threat Intelligence, and Vulnerability Management, to enhance overall security posture.
Qualifications:
Bachelor s degree in Computer Science, Information Security, or a related field; equivalent experience will be considered.
Minimum of 5-7 years of experience in cybersecurity, with at least 2-3 years in a SOC environment and 1-2 years in a leadership role.
Strong knowledge of SOC operations, security monitoring, incident response, and SIEM technologies.
Experience with security technologies and tools, such as EDR, IDS/IPS, firewalls, and cloud security solutions.
Industry-recognized certifications, such as CISSP, CISM, GIAC, or CEH, are preferred.
Excellent leadership, communication, and problem-solving skills.
Ability to handle high-stress situations with a calm and methodical approach.