Senior SOC Manager

Job Description

Everforth ECS is seeking a Senior SOC Manager to work remotely .

We are seeking a Senior SOC Manager to continue the modernization of a SOC. The ideal candidate will provide technical and process guidance, establishing common/standard practices and processes, managing and assessing the day to day operation of the SOC, and driving continuous improvement.

Responsibilities Include:
Lead and manage a 24x7x365 Security Operations Center providing technical oversight.
Lead staff to proactively identify, prevent and respond to security incidents.
Implementing and maintaining a comprehensive SOC program leveraging best practices and compliant with client standards and requirements.

Continue modernization planning and road mapping
Monitoring, managing, and responding to security events using client's security information and event management (SEIM) system.
Performing incident identification and assisting with security policy violations, conducting investigations, reporting/communicating infractions, eradicating/mitigating/remediating IoCs, and performing continuous monitoring.
Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring.
Evaluating Common Vulnerabilities and Exposures (CVE) for applicability as a potential internal/external attach vector, developing recommendation to eliminate vulnerability/weakness.
Provide guidance on active Plans of Action and Milestones (POA&M).
Monitoring system recovery processes to ensure security features and functions are properly restored and functioning correctly following an outage.
Ensure compliance to Service Level Agreements (SLA), process adherence and process improvisation to achieve operational objectives and mitigate threats.
Author and update/revise processes (SOP's and runbooks) to strengthen the current operational activities; review policies and recommend changes to improve governance.
Responsible for team management, personnel scheduling, overall use of resources and initiation of corrective action where required for SOC.
Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
Develop reports, dashboards, and metrics for SOC operations and presentation to leadership and clients

Coordinate with stakeholders to build and maintain positive working relationship.

Salary Range: $185,000 - $200,000

General Description of Benefits

Required Skills

• 8+ years of experience in cybersecurity, security operations, incident response, threat detection, cyber defense, or related technical roles.
• 3+ years of experience leading SOC operations, incident response teams, cyber operations teams, or similar security functions.
• Strong understanding of SOC workflows, alert triage, escalation management, incident response, threat hunting, threat intelligence, detection engineering, and security monitoring.
• Experience overseeing or supporting security tools such as SIEM, SOAR, EDR, NDR, ticketing platforms, and case management systems.
• Demonstrated ability to lead technical teams, coordinate cross-functional response activities, manage priorities, and ensure timely delivery of operational outcomes.
• Conducts training and tabletop exercises as necessary for SOC analysts to improve on SOC protocols, operator proficiency and readiness.
  
• Experience developing or enforcing SOPs, playbooks, runbooks, escalation guides, metrics, reports, and quality-control processes.
• Ability to analyze operational risk, validate incident information, communicate impacts, and brief technical and non-technical stakeholders.
• Excellent written and verbal communication skills, including experience producing operational reports, executive briefings, and incident updates.

Desired Skills

• Experience leading SOC operations in government, critical infrastructure, financial, healthcare, defense, or other regulated and mission-critical environments.
• Experience managing 24x7 operations, shift teams, surge support, on-call rotations, major incident coordination, or customer-facing operational teams.
• Security certifications such as CISSP, CISM, GCIH, GCIA, GCDA, GSOC, CySA+, Security+, or equivalent credentials.
• Experience managing analyst training programs, workforce development initiatives, and career progression plans
• Experience briefing executives, senior government stakeholders, program managers, auditors, or customer leadership.

#EverforthECS1

ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.

Everforth ECS is the federal segment of Everforth , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.

Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.

We value:

• Attracting and developing top talent and high-performing teams
• Fostering a culture that is engaging, accountable, and mission-driven

Meet the challenge. Make a difference with Everforth ECS!