Job Description
Everforth ECS is seeking a SOC Manager to work remotely.
At ECS Federal, we're driven by a commitment to excellence and innovation in solving complex challenges. As a premier provider of advanced technology solutions and services, our mission is to secure and optimize the most critical commercial, government, defense, and intelligence projects across the country. Our team is composed of dynamic professionals who thrive in a collaborative and empowering environment, where our team members leverage the latest technologies and insights to make a real-world impact. Join us and be part of a forward-thinking organization that values your expertise and supports your professional growth.
The SOC Manager is responsible for the the operational leadership of the Everforth Security Operations Center. This role oversees the daily operations of the SOC analyst team responsible for enterprise security monitoring, alert investigation, threat detection, and incident response. The SOC Manager ensures consistent operational execution, maintains investigation quality, manages analyst performance, and ensures the SOC delivers reliable enterprise security monitoring across all Everforth business segments. The SOC Manager reports directly to the SOC Director and works closely with security engineering, IT operations, and enterprise security leadership to ensure effective threat detection and response.
Responsibilities
- SOC Operations Management: Oversee daily SOC operations, ensuring effective monitoring, investigation, and response to security alerts and incidents across enterprise environments.
- Analyst Team Leadership: Lead, mentor, and manage SOC analysts, providing guidance on investigations, escalation procedures, and threat analysis techniques.
- Operational Oversight: Ensure consistent execution of SOC processes, playbooks, and investigation procedures across all monitoring activities.
- Incident Response Coordination: Coordinate enterprise incident response activities, ensuring appropriate escalation, communication, and resolution of cybersecurity incidents.
- Alert Investigation Quality: Maintain high investigation standards by reviewing analyst work, validating incident classifications, and ensuring accurate documentation.
- Operational Metrics Management: Track and report SOC operational metrics such as alert volumes, investigation throughput, detection efficiency, and response times.
- SOC Process Development: Develop, refine, and enforce SOC operational procedures, playbooks, and investigation workflows.
- Cross-Team Coordination: Work closely with security engineering, IT operations, and infrastructure teams to support investigation and response activities.
- After-Hours Monitoring Oversight: Coordinate with the MSSP responsible for after-hours Tier 1 monitoring to ensure proper escalation, investigation continuity, and operational alignment.
- Threat Awareness and Escalation: Maintain situational awareness of emerging threats and ensure relevant alerts, indicators, and investigation priorities are communicated to the SOC team.
- Operational Readiness: Ensure SOC staffing, shift coverage, and operational processes support enterprise monitoring requirements.
- Continuous Improvement: Identify opportunities to improve detection coverage, investigation efficiency, and SOC operational maturity.
- Training and Skill Development: Ensure analysts maintain strong investigative and technical capabilities through continuous training and development programs.
Salary Range: $140,000 - $170,000