Security Operations Manager

About Charles River Associates

Charles River Associates (CRA) is a leading global consulting firm specializing in economic, financial, and management consulting services. CRA advises clients on economic and financial matters pertaining to litigation and regulatory proceedings, and guides corporations through critical business strategy and performance-related issues. Since 1965, clients have engaged CRA for its unique combination of functional expertise and industry knowledge, and for its objective solutions to complex problems.

The Information Technology Services team is committed to optimizing financial performance and supporting the company's growth initiatives. Our culture embraces a growth mindset: inspiring excellence and bringing expertise and innovation to the role every day with a key focus on outstanding customer service and an ongoing commitment to efficient, ethical practices. Our motivated and action-driven team resides is the Boston office.

Position Overview

We are seeking a highly skilled and motivated Security Operations Manager to join our cybersecurity team. The SOC Manager will play a critical role in monitoring, analyzing, and responding to security incidents to ensure the protection of our organization's information assets. The ideal candidate will have a strong background in cybersecurity, incident detection and response, and possess excellent analytical and communication skills. This position will report to the Chief Information Security Officer, and a part of a larger Information Technology team.

Primary responsibilities include:

Security Monitoring & Incident Response

• Monitor security alerts and events in real-time using advanced security information and event management (SIEM) tools, including Microsoft Sentinel and IBM QRadar;
• Analyze security incidents to identify and assess the impact, root cause, and appropriate remediation;
• Coordinate incident response and containment.

Manage Managed Detection & Response Service and SOC contractor

• Manage our external Managed Detection and Response Service, operations, escalations and improvements;
• Manage a SOC analyst contractor.

Threat Intelligence Analysis:

• Stay abreast of the latest cybersecurity threats, vulnerabilities, and trends.
• Incorporate threat intelligence into the analysis and response processes to enhance detection capabilities.

Threat Hunting:

• Proactively search for and identify potential security threats or indicators of compromise within the organization's network and systems.
• Utilize advanced threat hunting techniques to uncover hidden or sophisticated threats that may evade traditional security measures.

Security Investigations:

• Conduct in-depth investigations into security incidents to determine the extent of compromise and provide detailed reports.

Vulnerability Management:

• Participate in the identification and remediation of security vulnerabilities within the organization's infrastructure.

Collaboration and Communication:

• Collaborate with other cybersecurity team members, IT personnel, and external partners to ensure a coordinated response to security incidents.
• Communicate effectively with stakeholders, providing timely updates and reports on security incidents.

Documentation:

• Maintain accurate and detailed documentation of security incidents, investigations, and response activities.

Desired Qualifications

• Bachelor's degree in Cybersecurity, Information Technology, or related field;
• 7+ years working in a Security Operations or similar role, ideally in a professional services environment;
• Relevant industry certifications such as CompTIA Security+, CYSA, Certified Information Systems Security Professional (CISSP), or equivalent desirable;
• Strong knowledge of cybersecurity principles, techniques, and technologies;
• Effective communication skills, both written and verbal.

To Apply

To be considered for this position, please submit the following:

• Resume – please include current contact information (personal email and telephone number);
• Cover Letter (optional) - please describe your interest in CRA and how this role matches your goals.

Work Location Flexibility

CRA creates a work environment that enables our colleagues to benefit from being together in the office to best deliver on our promise of career growth, mentorship and inclusivity. At the same time, we recognize that individuals realize a range of benefits when working from home periodically. We currently expect that individuals spend at least 3 to 4 days a week working in the office (which may include traveling to another CRA office or to client meetings), with specific days determined in coordination with your practice or team.

Our Commitment to Equal Employment Opportunity

Charles River Associates is an equal opportunity employer (EOE). All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, status as a protected veteran, or any other protected characteristic under applicable law.