SOC Manager

Job Description

Job Description

Job Title : SOC Manager

Position Type : Direct Hire

Location : Remote

Overview :

As the Information Security Manager Security Operations Center , you will play a critical leadership role within the Information Security team. You will oversee and enhance enterprise-level security operations by managing the Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) systems, leading threat-hunting efforts, managing vendor relationships with external security service providers, and helping to establish and mature an internal Security Operations Center (SOC).

This position ensures that security monitoring, detection, and incident-response capabilities are robust, efficient, and continuously evolving to address emerging threats. The ideal candidate combines deep technical expertise with strong leadership and communication skills.

What You'll Do

Lead the administration, tuning, and optimization of SIEM and SOAR tools to ensure effective threat detection and response.

Monitor vendor performance for Security Operations Center services and ensure proper integration of security data sources and data integrity.

Assist in building and maintaining an internally based Security Operations Center.

Manage and support staff on incident-response and threat-hunting activities to detect advanced persistent threats and hidden adversaries.

Collaborate with cross-functional teams to investigate security incidents, identify root causes, and recommend mitigations.

Develop and implement SIEM / SOAR use cases, correlation rules, and log-management strategies.

Serve as an escalation point, mentor, and advisor to leadership on incident response and vendor performance.

Continuously review, enhance, and improve existing processes, procedures, and playbooks.

Manage a team of 310 people.

Perform other duties as assigned.

What You Bring to the Role

Bachelor's degree in Computer Science, Engineering, or related field (required); Master's preferred.

5+ years of experience in security operations, threat detection, and / or incident response.

Minimum 2 years of working in a Security Operations Center or equivalent environment.

Proven experience managing security teams and / or mentoring analysts.

Experience working with MSSPs or third-party security vendors.

Professional certifications (CISSP, GIAC [GCIH, GCIA, GCFA], CEH, or equivalent) or ability to obtain within 2 years.

Deep understanding of SIEM and SOAR platforms (Google Chronicle or similar), including rule creation, log ingestion, tuning, and alert triage.

Hands-on experience with EDR / XDR solutions, SOAR automation platforms, vulnerability scanners, and endpoint protection.

Proficiency in scripting (e.g., PowerShell, Python) for automation and custom alerting or playbook development.

Familiarity with security monitoring in cloud environments (preferably Microsoft Azure), including log sources and native tools.

Knowledge of threat hunting methodologies, anomaly detection, and threat intelligence feeds.

Strong skills in incident management containment, eradication, and recovery.

Ability to analyze logs from firewalls, endpoints, IDS / IPS, and cloud environments to identify threats.

Deep knowledge of cybersecurity frameworks (MITRE Telecommunication&CK, NIST, CIS, etc.).

Excellent written and verbal communication skills and collaboration across teams.

Preferred Qualifications

Master's degree.

Knowledge of HIPAA and other health-related regulations.

Experience within academic medical centers or healthcare consulting environments.

Compensation Information

The expected salary range for this position is $150000-$190000 per year, depending on experience and qualifications. This role also offers comprehensive benefits, including health insurance, a 401(k) plan, and paid time off. TalentFish is committed to pay transparency and equal opportunity. The salary range provided complies with applicable state and federal regulations.

This role requires authorization to work in the U.S. without current or future visa sponsorship.

All offers are contingent upon the completion of a background check, which may include, but is not limited to, reference checks, education verification, employment verification, drug testing, criminal records checks, and any required certifications or compliance requirements based on the end client's background check policies and applicable laws.

TalentFish is an employee-owned company pioneering a new realm in talent acquisition. We are redefining IT staffing by evolving AI, video screening, and our unique platform. TalentFish focuses on providing the best employee, consultant, and client experience possible.

At TalentFish, we are an Equal Opportunity Employer; we embrace and encourage diversity!