SOC/NOC Operations Manager – Senior

Location: National Capital Region (Washington, DC) – Hybrid/Onsite
Clearance: Must be able to pass background check (U.S. work authorization required)

Salary: $120,000-$130,000

Position Overview

We are seeking a Senior SOC/NOC Operations Manager to lead enterprise cybersecurity and network monitoring operations. This role is responsible for overseeing 24x7x365 operations, ensuring efficient incident response, maintaining operational performance, and driving continuous improvement across integrated SOC/NOC environments.

Key Responsibilities

• Lead daily SOC/NOC operations, including:
  • Security and network monitoring
  • Incident triage and response coordination
  • Escalation management and workflow oversight
• Manage operational processes, including:
  • Event handling procedures
  • Shift handoffs and escalation paths
  • Standard operating procedures (SOPs) and playbooks
• Ensure full 24x7x365 operational coverage through staffing, scheduling, and escalation management
• Track and report on:
  • SLAs and KPIs
  • Incident trends and response times
  • Operational performance and service delivery metrics
• Conduct post-incident reviews and implement process improvements
• Develop dashboards, reporting artifacts, and operational metrics
• Coordinate with cross-functional teams:
  • Security engineering
  • Network operations
  • Vulnerability management
  • Compliance and service desk teams
• Provide executive-level briefings on operational status, risks, and improvements

Required Qualifications

• 8–10+ years of experience in:
  • Cybersecurity operations
  • Network operations (NOC)
  • Incident response or enterprise IT operations
• 5+ years of leadership experience managing:
  • SOC / NOC / CSOC teams
  • Monitoring and incident response operations
• Experience supporting:
  • 24x7x365 operational environments
  • Shift coordination and escalation workflows
• Strong experience with:
  • Incident triage and escalation
  • Root cause analysis
  • KPI/SLA tracking and reporting
  • Continuous process improvement

Technical Expertise

• Experience with tools such as:
  • Splunk, Microsoft Sentinel, Elastic
  • Microsoft Defender (MDE), Tanium
  • ServiceNow, SolarWinds
• Core capabilities:
  • Monitoring and alert management
  • Incident response coordination
  • Dashboard development and reporting
  • Operational metrics and performance tracking

Education

• Bachelor’s degree in Cybersecurity, IT, Computer Science, Engineering, or related field (or equivalent experience)

Certifications (Preferred)

• CISSP (preferred or required)
• Additional certifications such as:
  • CISM, CASP+, CySA+
  • GCIH, GCIA, GCFA
  • Security+, ITIL

Additional Qualifications

• Strong communication and stakeholder management skills
• Experience delivering executive-level reporting and briefings
• Ability to coordinate across technical and operational teams
• Experience in enterprise or federal environments preferred

Ideal Candidate Profile

• Operational leader with deep SOC/NOC experience
• Proven ability to manage high-tempo, 24/7 environments
• Strong in process optimization and performance management
• Comfortable interfacing with leadership and customer stakeholders
• Data-driven decision maker with strong reporting capabilities