Job Title: Director, Security Operations Center
Location: Remote US
Job Summary We are seeking an experienced Security Operations Center (SOC) Director to join our team and lead our SOC operations for a Managed Cybersecurity Service Provider (MSSP). The ideal candidate will possess a robust background in cybersecurity and experience in developing and managing a high-performing team of security professionals. This role involves overseeing the implementation and operations of a SOC, ensuring the highest levels of security monitoring, threat detection, and incident response for our clients.
Essential Job Functions
Build and lead the SOC Team: Recruit, train, and develop a team of security analysts, engineers, and other professionals. Foster a collaborative and high-performance culture within the team.
SOC Operations Management: Oversee the day-to-day operations of the SOC, ensuring all security incidents are monitored, detected, and responded to in a timely and effective manner.
Strategy and Planning: Develop and implement the SOC strategy, aligning it with the company's security objectives and best practices.
Incident Response: Lead the incident response efforts, coordinating with other departments and stakeholders to ensure rapid and effective resolution of security incidents.
Security Monitoring: Implement and manage advanced security monitoring tools and technologies to detect and respond to threats.
Client Engagement: Serve as the primary point of contact for clients regarding security operations, providing regular updates and ensuring their security needs are met.
Reporting and Documentation: Develop comprehensive reports on security incidents, threats, and SOC performance. Maintain detailed documentation of all processes and procedures.
Continuous Improvement: Continuously assess and improve SOC processes, tools, and technologies to enhance the overall security posture.
Qualifications
Educational Background: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Advanced degree or certifications (e.g., CISSP, CISM, CEH) are a plus.
Experience: Minimum of 10 years of experience in cybersecurity, with at least 3 years in a SOC management role.
Technical Skills: Strong knowledge of security technologies, including SIEM, IDS/IPS, firewalls, and antivirus solutions. Proficiency in incident response and forensic analysis.
Leadership: Proven ability to lead and develop a team of security professionals. Excellent interpersonal and communication skills.
Problem-Solving: Strong analytical and problem-solving skills, with the ability to make sound decisions under pressure.
Client Focus: Experience working with clients in a managed service environment. Ability to understand and address client security concerns.
Adaptability: Ability to adapt to a fast-paced and dynamic environment, managing multiple priorities and deadlines.
Product Experience: Experience with R7, Artic Wolfe, S1 is a plus but not mandatory.