Senior SOC Manager

As a Senior SOC Manager, you will lead the technical team in conducting event detection, incident triage, incident handling, and hunting activities. You will leverage our detection/response platforms to monitor and prioritize threats, develop remediation plans, and provide input into security architecture. As a Senior Manager, this person will also be responsible for the service operations regarding all aspects of our service delivery. This includes the onboarding of new customers, critical situation management and specialized SOC services such as incident response projects. This role requires strong leadership and a deep understanding of cybersecurity technologies and methodologies.

RESPONSIBILITIES:

Event Detection & Incident Handling:

• Direct technical members in conducting event detection, incident triage, incident handling, and hunting activities using our detection/response platforms.
• Continuously monitor levels of service and interpret and prioritize threats using cyber threat intelligence, intrusion detection systems, firewalls, and other boundary protection devices.
• Remediation Planning:
• Collaborate with Security and IT operations teams to develop and implement remediation plans in response to incidents.
• Provide input into security architecture requirements.
• Threat Intelligence & Monitoring:
• Utilize cyber threat intelligence to interpret and prioritize threats.
• Ensure continuous monitoring and improvement of security incident management products deployed.

Leadership & Staff Development:

• Lead and mentor technical team members in incident response and handling.
• Provide guidance and support to team members, ensuring high performance and professional growth.
• Work with Security and IT operations teams to develop and implement remediation plans in response to incidents.

Client & Stakeholder Communication:

• Provide input into security architecture requirements.
• Communicate findings and recommendations effectively to clients and stakeholders.
• Deliver clear and concise reports and presentations.

Operational Delivery:

• Provide input and improvements to the onboarding of new customers.
• Own critical situation management related to customer delivery, such as account escalations and high-priority incidents.
• Assist in team modeling and scaling related to the growth of our lines of business.

Continuous Learning:

• Stay updated with the latest trends and developments in cybersecurity through ongoing training and self-study.
• Actively participate in team meetings and knowledge-sharing sessions to enhance your understanding of cybersecurity practices.

QUALIFICATIONS:

• 8+ years of cybersecurity experience required.
• 5+ years of leadership experience.
• Strong understanding of concepts and technology across all IT areas to spot gaps and develop appropriate controls.
• Working knowledge of security technologies such as Active Directory, anti-malware tools, forensics tools, firewalls, identity access management, IDS/IPS, multi-factor authentication, network devices, SIEM, threat intelligence, vulnerability scanners, monitoring tools, and web filters on-premise and in cloud environments.
• Familiarity with network technologies and protocols (switches, routers, firewalls, VPNs, remote connection technologies, and multiple domain environments).
• Demonstrated analytical, problem-solving, and critical thinking skills.
• Ability to work with little supervision and consistently deliver results.
• Strong leadership and interpersonal skills.
• Effective communication and ability to work collaboratively in a team environment.

Application Instructions: To apply, please submit your resume and cover letter through our online application portal. Applications will be reviewed on a rolling basis until the position is filled.

Salary range: $190K - $200K plus bonus package

Benefits include:

• 401(k)
• AD&D Insurance
• Dental Insurance
• Disability insurance
• Health insurance
• Life insurance
• Vision insurance
• Flex PTO program
• Paid certification and continuing education

Work schedule: Monday through Friday

Work hours: 40 hours a week

A little about DirectDefense

Since coming together in 2011 to form DirectDefense, our team has been committed to offering Cybersecurity defense strategies that are unmatched in the industry. Whether we are performing assessments of networks, platforms, and applications or applying managed services to improve your organization’s security posture, we are focused on providing world-class services that don’t just work–they work for you.

OUR MISSION

We establish partnerships with our clients based on trust and results. We leverage our deep industry knowledge and expertise to identify and remediate blind spots in your security program, provide meaningful visibility of your entire enterprise, and align your organization with security best practices and compliance standards.

OUR VISION

We aim to secure organizations across all industries against advanced threats and attacks in today’s world. Acting in partnership with organizations, we will provide unmatched information security services designed to improve your overall security posture, close gaps, and track vulnerabilities on an ongoing basis through continued education and support.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

As required by Colorado law under the Equal Pay for Equal Work Act, DirectDefense provides a reasonable range of compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Colorado only, the range of starting pay for this role is $60,000 - $70,000 per year with a monthly and quarterly bonus.

A little about DirectDefense

Since coming together in 2011 to form DirectDefense, our team has been committed to offering Cybersecurity defense strategies that are unmatched in the industry. Whether we are performing assessments of networks, platforms, and applications or applying managed services to improve your organization’s security posture, we are focused on providing world-class services that don’t just work–they work for you.

OUR MISSION

We establish partnerships with our clients based on trust and results. We leverage our deep industry knowledge and expertise to identify and remediate blind spots in your security program, provide meaningful visibility of your entire enterprise, and align your organization with security best practices and compliance standards.

OUR VISION

We aim to secure organizations across all industries against advanced threats and attacks in today’s world. Acting in partnership with organizations, we will provide unmatched information security services designed to improve your overall security posture, close gaps, and track vulnerabilities on an ongoing basis through continued education and support.

As required by Colorado law under the Equal Pay for Equal Work Act, DirectDefense provides a reasonable range of compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Colorado only, the range of starting pay for this role is $190,000 to $200,000 per year with an annual bonus.

Last updated on Oct 9, 2024