Security Operations Center (SOC) Chief
About the role
Revolutional delivers advanced technology solutions and mission support to federal agencies across civilian, health, and national security environments. We apply modern capabilities, including AI/ML, cloud, cybersecurity, and IT modernization to solve complex challenges, enable faster and more secure operations, and drive measurable mission outcomes. We are redefining how federal technology gets built and delivered by operating with a product mindset, prioritizing speed, ownership, and execution over bureaucracy.
Responsibilities
Oversee all SOC activities across cyber defense monitoring, alert triage, incident response, and threat analysis functions; serve as the senior operational and organizational authority for the SOC
Maintain program tracking mechanisms including project schedules, risk registers, and issue logs; identify risks and issues early, develop mitigation strategies, and drive corrective actions to closure
Ensure all SOC program deliverables are produced on time and to quality standards; hold the team accountable to contractual and program performance obligations
Lead the Information Security GAP Analysis function; assess current security posture against applicable frameworks and standards, identify gaps, and communicate findings and remediation priorities to government stakeholders
Serve as primary incident commander during active security events; direct incident response operations, make real-time decisions on containment and escalation, and ensure coordinated, effective response across all participating teams
Cover coordination directly with government federal personnel on SOC performance, security events, program risk, and organizational security matters; maintain a trusted, transparent stakeholder relationship
Operate effectively in a high-pressure environment with changing priorities; resource and reprioritize SOC activities dynamically without losing operational continuity or delivery quality
Develop and maintain SOC operational standards, playbooks, and governance documentation; drive continuous improvement through after-action reviews and lessons learned
Produce executive-level SOC status reports, incident summaries, risk assessments, and program health updates for government and program leadership
Requirements
Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)
7 to 10 years of experience in cybersecurity with demonstrated, concurrent expertise in both SOC management and incident response command — both are required
Proven experience as a primary incident commander during active, high-severity security events in a federal or classified environment
Active Top Secret/SCI clearance (Final) required
Deep experience overseeing SOC operations across cyber defense monitoring, alert triage, threat analysis, and continuous incident response in enterprise federal environments
Demonstrated incident response command experience: directing multi-team response operations, making real-time containment and escalation decisions, and managing stakeholder communications during active events
Experience leading Information Security GAP Analysis: assessing security posture against frameworks and standards, identifying deficiencies, and producing prioritized remediation findings
Proficiency with program management disciplines: project tracking, risk register management, issue mitigation, and deliverable quality oversight in a federal contract environment
Experience coordinating directly with government federal personnel as the primary contractor interface on security operations and program performance matters
Familiarity with applicable federal cybersecurity compliance frameworks: FISMA, NIST SP 800 series, and related standards as they apply to SOC operations and GAP analysis
One or more of the following certifications is required or strongly preferred: CISSP, CISM, GCIH (GIAC Certified Incident Handler), GCIA (GIAC Certified Intrusion Analyst), CySA+, or equivalent senior security operations or incident response credential
Role-based training required per NICE Cybersecurity Workforce Framework PR-CDA-001 and PR-CIR-001 — must be current or completed within required timeframes
Qualifications
Composed and decisive under pressure — you command incident response operations in high-stakes, fast-moving situations without losing clarity or organizational control
Strong program manager: you track risk, manage deliverables, and hold teams accountable without sacrificing the operational tempo the mission requires
Credible government interface: you communicate with federal personnel with transparency, technical authority, and the professionalism that sustains long-term trust
Organizational leader who builds high-performing SOC teams, enforces standards, and drives continuous improvement as a standing operating principle
Skills
Composed and decisive under pressure — you command incident response operations in high-stakes, fast-moving situations without losing clarity or organizational control
Strong program manager: you track risk, manage deliverables, and hold teams accountable without sacrificing the operational tempo the mission requires
Credible government interface: you communicate with federal personnel with transparency, technical authority, and the professionalism that sustains long-term trust
Organizational leader who builds high-performing SOC teams, enforces standards, and drives continuous improvement as a standing operating principle
Benefits
Competitive compensation
A family-focused culture
A dynamic, productive work environment
Flexible-schedules and teleworking options
Paid holidays and PTO Accrual Plans
Paid Parental Leave
Professional development and career growth opportunities
Team and company-wide events, recognition, and appreciation
Pay
Commensurate with experience
Schedule
Full-time