Security Operations Center (SOC) Lead
Tasks
- Coordinate incident response with stakeholders
- Develop SOC SOPs and playbooks
- Develop and tune detection rules and signatures
- Maintain continuous monitoring aligned with STIG and IAVM
- Manage SOC operations
- Map detections to MITRE ATTACK
- Prepare RMF ATO evidence and support audits
- Review and validate threat analysis cases
- Track SOC KPIs and implement continuous improvement
- Train analysts and conduct exercises and purple teaming
Perks/Benefits
- N/A
Skills/Tech-stack
Automation and response | COOP | Detection and Response | Detection engineering | Detection tuning | Endpoint Detection and Response | Endpoint detection | Event management | Evidence Preservation | Extended Detection and Response | IAVM | Incident Response | KPI Management | Malware analysis | Mitre Attack | Playbook Development | RMF | SIEM integration | SOAR playbooks | STIG | Security Information | Security Information and Event | Security Information and Event Management | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | Security monitoring | Threat Analysis | Threat hunting
Education
Related jobs
-
Manager, IT Cybersecurity Operations USD 50K-84KAccess Control | Agile | Communication Protocols | Cybersecurity | IEC 27001401k program | Car discounts | Cruise discounts | Dental insurance | Employee assistance programMid-level Full TimeFort Worth, TX, US4h ago
-
Cause analysis | EDR | Governance | IDSIPS | ISO 27001401k program | Car discounts | Cruise discounts | Dental benefits | Employee assistance programSenior-level Full TimeFort Worth, TX, US4h ago
-
Cyber Assurance Analyst USD 134K-159KACAS | Assured compliance assessment solution | ClamAV | Configuration Management | Cybersecurity401k Safe Harbor Plan | ADandD insurance | Holidays | Life insurance | Paid parental leaveSenior-level Full TimeHuntsville, Alabama, United States6h ago
-
Security Operations Manager USD 120K-135KAzure | Compliance | Cybersecurity Training | DLP | Data Governance401k match | Dental insurance | Disability insurance | Health savings account | Life insuranceMid-level Full TimeLos Angeles, CA11h ago
-
Manager Site Reliability Engineering USD 213KAWS | CI/CD | Capacity Planning | Cause analysis | Cost Optimization401k retirement plan | Dental insurance | Disability insurance | Flexible time off | Medical insuranceMid-level Full TimeTampa, FL16h ago
-
Infrastructure Security Engineer USD 200K-240KAWS | AWS Key Management Service | Access Control Lists | Bill of Materials | CI/CDSenior-level Full TimeRedwood City, CA (Hybrid); San Francisco, … R18h ago
-
Senior Information System Security Manager (ISSM) USD 127K-180K800-37 | 800-53 | ACAS | ATO | Agnostic Security ControlsHybrid work environment | Remote & Onsite Flexibility | Security clearance sponsorshipSenior-level Full TimeFAIRFAX, VA, United States18h ago
-
Senior Security Operations Engineer II USD 148K-237KAWS | Alerting | Azure | CI/CD | CMDBDental insurance | Employee wellness support | Fitness programs | Learning and development programs | Medical insuranceSenior-level Full TimeWashington, United States19h ago
-
Analyst, Security Operations Center USD 64K-64KAutomation | Cloud Posture | Cloud Posture Management | Cyber Threat | Cyber threat analysis401k match | Employee assistance program | Health, dental, and vision insurance | Life insurance | Night shift rotationEntry-level Full TimeCharlotte, NC, United States20h ago
-
Validator/Vulnerability Management Lead (5165) USD 93K-156KAuthorization to Operate | Continuous Monitoring | Cyber directives | EMASS | Interim Authorization to TestSenior-level Full TimePatuxent River, MD23h ago
-
Cyber Intelligence Lead USD 116K-194KAI ML Risk Mitigation | AI/ML | AI/ML risk | Cybersecurity engineering | D3FENDSenior-level Full TimeUSA-VA-Chantilly, USA-AZ-Chandler23h ago
-
Anomaly Detection | Apache Flink | CI/CD | CIS | CMDBSenior-level Full TimeSan Jose, California, United States23h ago
-
Cybersecurity | Incident Response | Investigation | Market Analysis | Product ManagementSenior-level Full TimeNew York, NY, USA1d ago
-
Senior Security Engineer, Google Public Sector USD 174K-252K800-171 | 800-53 | Access Management | Ansible | Cloud platformUp to 25 percent domestic travelSenior-level Full TimeReston, VA, USA; Colorado, USA1d ago
-
Cybersecurity Engineer III USD 133K365 Security | AI | AWS Security | Ansible | Application FirewallContinuous learning opportunities | Generous paid time off | Health/Dental/Vision | Mental health benefits | Parental leaveSenior-level Full TimeSanta Ana, CA, United States1d ago
-
Security Engineer USD 186K-320KAWS GuardDuty | EDR | Encryption | ISO 27001 | Incident ResponseHealth and wellness resources | Remote work flexibility | Vacation and personal timeSenior-level Full TimeAustin, Texas1d ago
-
Cyber Security Analyst III USD 78K-149KDHCP | DNS | Digital forensics | FTP | Incident Response401k with employer match | Adoption reimbursement | Dental insurance | Fitness center membership | Free Wi-FiSenior-level Full TimePontiac, MI, United States1d ago
-
SITEC - Cybersecurity Analyst - Hurlburt Field, FL USD 86K-138KCloud Security | Configuration Management | Data encryption | Incident Response | Intrusion DetectionShift workSenior-level Full TimeHurlburt Field, FL, United States1d ago
-
IA Cybersecurity Reviewer USD 112K-179KCloud Security | Compliance Assessment | Cybersecurity audit | DNS | Database securityTravel opportunitiesSenior-level Full TimeFort Meade, MD, United States1d ago
-
Cyber Incident Response Team (CIRT) Lead (SME) USD 112K-179KATO | Advanced Cyber Investigations | Adversary TTP | Adversary TTP Mapping | Blue TeamingSenior-level Full TimeHerndon, VA, United States1d ago
-
Cyber Incident Response Team (CIRT) Lead USD 104K-166KATO | Blue Teaming | Chain of Custody | Detection engineering | Detection validationSenior-level Full TimeHerndon, VA, United States1d ago
-
Senior Technology Program Manager USD 176K-282KAgile | Authority to Operate | Cybersecurity | DoD program management | Malware analysisSenior-level Full TimeFort Meade, MD, United States1d ago
-
Technology Program Director USD 176K-282KAWS GovCloud | Agile | Classified Environments | Cyber Operations | CybersecurityExecutive-level Full TimeFort Meade, MD, United States1d ago
-
Deputy Operations Lead USD 155K-190KAgile | Confluence | Incident Response | Jira | Linux401k matching | Disability coverage | Education and Training | Employee assistance program | Generous leave policySenior-level Full TimeFort Meade, MD, United States1d ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector mitigation | CI/CD | Cloud Security | Endpoint SecurityCommuter benefits | Health insurance | Paid time off | Professional development reimbursement | Relocation assistanceSenior-level Full TimeAshville, Ohio, United States1d ago