SOC Manager (1st Shift)
TENEX.AI · Sarasota, FL · 6 days ago
On-siteManagementFull-time
Responsibilities
- Lead, mentor, and manage a team of SOC analysts, fostering a culture of continuous learning and improvement.
- Contribute to active cases and other Security Operations Center requirements as directed by the Director of Security.
- Develop, implement, and maintain SOC processes, procedures, and runbooks to ensure efficient and effective security operations.
- Oversee the 24/7 monitoring, detection, and analysis of security events and incidents.
- Manage and prioritize security incidents, ensuring timely and effective response, containment, and recovery.
- Conduct regular threat intelligence analysis to identify emerging threats and vulnerabilities.
- Implement and optimize security tools and technologies, including SIEM, EDR, IDS/IPS, and vulnerability scanners.
- Develop and deliver regular reports on SOC performance, incident trends, and security posture.
- Collaborate with other IT teams to ensure the integration of security into all aspects of the organization's infrastructure.
- Stay up-to-date with the latest security trends, technologies, and best practices.
- Manage and participate in on-call rotations as needed.
Qualifications
- Bachelor's degree in Computer Science, Information Security, or a related field
- 5+ years of experience in information security, with at least 2 years in a leadership/mentorship or management role within a SOC.
- Strong understanding of security principles, technologies, and best practices.
- Experience with security frameworks (e.g., NIST, ISO 27001).
- Proficiency with SIEM platforms (e.g., Splunk, QRadar, Sentinel) and other security tools.
- Experience in incident response, threat hunting, and vulnerability management.
- Excellent leadership, communication, and interpersonal skills.
- Relevant security certifications (e.g., CISSP, CISM, GCIH, GCIA) are highly desirable.
- Experience with security orchestration, automation, and response (SOAR) platforms.
- Exposure to cloud security platforms (e.g., AWS, Azure, Google Cloud) and the associated risks.
- Practical experience working with Google SecOps tools and Chronicle for centralized threat intelligence and event correlation a plus.
- Hands-on experience with the Microsoft security platform (Sentinel, Defender) is a plus.