Role Overview
We are seeking an experienced SOC Manager to oversee the daily operations of the Cyber Intelligence Center (CIC). The CIC Manager will be responsible for leading a team of Team Leads, Analysts, and Associate Managers across multiple shifts to ensure continuous 24/7/365 security monitoring and incident response. This role requires a strong cybersecurity background, leadership skills, and a passion for driving operational excellence in a fast-paced environment.
Salary Range: $135,000 to $165,000 per year
Key Responsibilities
SOC Operations & Leadership
- Oversee the end-to-end operations of the Cyber Intelligence Center (CIC), ensuring effective incident triage, analysis, and escalation to clients.
- Manage and mentor SOC Team Leads, Analysts, and Associate Managers across multiple shifts to provide seamless 24/7 coverage.
- Ensure all alerts, incidents, and investigations are handled efficiently and aligned with client SLAs.
- Continuously evaluate, document and improve SOC workflows, playbooks, and escalation procedures.
Incident Response & Client Communication
- Oversee the triage and escalation of security incidents, ensuring timely and accurate client notifications.
- Act as an escalation point for critical security incidents, coordinating with clients and internal teams to drive resolution.
- Maintain communication with customers regarding security incidents, emerging threats, and recommended mitigation strategies.
- Lead Monthly Operations Report and Quarterly Business Reviews
Team Development & Training
- Recruit, train, and develop SOC personnel to enhance their skills in managed technologies.
- Foster a high-performance security culture by encouraging continuous learning, certifications, and knowledge sharing.
- Conduct performance reviews, set goals, and ensure alignment with company objectives.
Technology & Process Optimization
- Work closely with internal teams to optimize and fine-tune SIEM, EDR, VM, Threat Intelligence and other managed technologies for better detection and response.
- Monitor and report SOC performance metrics to improve service delivery and effectiveness.
Qualifications & Experience
- 6+ years of experience in a Security Operations Center (SOC), with at least 2 years in a leadership role (SOC Manager, SOC Lead, or similar).
- Strong technical expertise in SIEM, EDR, VM, and Threat Intelligence.
- Hands-on experience with security technologies such as Splunk, Sentinel, CrowdStrike, Qualys, Tenable, PaloAlto XSIAM, FortiSIEM, QRadar, Defender, Sentinel One, etc.
- Deep understanding of incident response frameworks, security monitoring, and threat detection methodologies.
- Knowledge of cyber threat intelligence, adversary tactics (MITRE ATT&CK), and vulnerability management.
- Familiarity with compliance and security frameworks (e.g., ISO 27001, NIST, CIS, PCI-DSS).
- Strong leadership and team management skills with experience overseeing 24/7 SOC operations.
- Excellent communication skills for engaging technical teams and executive-level stakeholders.
- Industry certifications such as CISSP, CISM, GCIA, GCIH, CEH, or Security+ are highly preferred.
