Job Description :

Job Title: Security Operations Center (SOC) Manager (Direct Hire)

Location:  San Antonio, TX

Job Description: 

As a Security Operations Center (SOC) Manager, you would have a…
HEART FOR PEOPLE… you have a passion for mentorship and guidance, and a love for the direct person-to-person interactions that create strong bonds between teams
HEAD FOR BUSINESS… you have an ownership mentality and a consistent track record of timely delivery of high-quality software
PASSION FOR RESULTS… the ability to guide the discussion, remove roadblocks, and provide guardrails for your team as they identify challenges and propose solutions

What You’ll Do

The SOC Operations Manager is a high-level security position leading clients’ Security Operations/Security Incident Response Team for on-premise and cloud properties. This position reports to and performs tasks under the direction of the Director of Information Security. This is a hands-on management position that requires technical skills as well as management abilities. The role will coordinate the efforts of Tier 1 (security monitoring) and Tier 2 (event escalation and incident management) security response teams, including all staff, technology, projects, and coordination with Tier 3 (analysis and investigation). In addition, this position will provide support across clients in a relation to security monitoring and its integration into information technology, human resources, privacy, loss prevention, fraud, legal, and other departments and will identify security trends and issues. Direct reports may include technical and support personnel such as Security Operations Analysts and Security Analysts.

  • Oversee a team of information security personnel who monitor and protect clients’ information assets, intellectual property, information systems, and security tooling within client
  • Coordinate monitoring, and implementation of security monitoring tools and platforms, and determine objectives for the team.
  • Establish operational foundations, defining metrics and KPIs to drive governance, quality, and efficiency. Influence and improve existing processes through innovation and operational change.
  • Responsible for managing the creation and execution of runbooks, response plans, testing, and incident alerting and response plans.
  • Identify protection goals, objectives, and metrics consistent with the client's strategic plan and risk assessment methodology.
  • Work with an outside vendor, consultants, or experts as appropriate for managed services or implementation of new technologies.
  • Keep current with the latest vendor updates, expansion opportunities, and technology directions, utilized in the client's environment.
  • Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring
  • Ensure compliance to SLA, process adherence, and process improvisation to achieve operational objectives
  • Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring

Who You Are

  • College Degree in a related field or 5 years of relevant work experience in the field
  • 5+ years in Information Security management preferably in a SOC.
  • Professional information security certification preferred - such as CISSP, CISM, etc.
  • Working knowledge of industry standards such as HIPAA, ITIL, NIST, SANS, COBIT, OWASP, and ISO Standards
  • Critical thinking and strong interpersonal skills are a must
  • Experience in running and managing a SOC/SIRT in an enterprise environment
  • Demonstrate understanding of Information Security and Networking controls within the cloud and on-premise environments.
  • Strong background in AWS, Windows, and Unix security management and security controls
  • Ability to handle monitoring, alerting, and reporting in a multi-cloud, hybrid datacenter environment
  • Experience working with a diverse team comprising managed service providers, client Partners, contractors, and vendors focused on delivering robust security solutions and platforms
  • Strong background in managing resources in an enterprise multi-vertical business environment
  • Strong technical knowledge of networking, data structures, directory systems, internet, security, and other technologies.

Similar Jobs you may be interested in ..