SOC Lead

We are seeking a highly skilled and mission-focused SOC Lead to oversee the daily operations of the Security Operations Center and guide a team of cybersecurity analysts in defending the organization against evolving threats. This role requires a blend of technical expertise, leadership presence, and the ability to translate complex cybersecurity issues into clear, actionable insights for stakeholders at all levels.


Requirements

Key Responsibilities

• Lead, mentor, and manage SOC analysts to ensure efficient, 24/7 operational readiness.
• Direct the identification, analysis, and response to cybersecurity incidents, serving as the escalation point for high-priority events.
• Reconstruct attack timelines and analyze network defense data to understand intrusion methods.
• Strengthen incident response processes and coordinate enterprise-wide threat mitigation efforts.
• Develop and enhance threat detection capabilities; analyze logs, traffic, and intelligence to identify emerging risks.
• Communicate cybersecurity risks and technical findings to leadership in clear, concise terms.
• Protect intellectual property by identifying vulnerabilities and implementing mitigation strategies.
• Collaborate with IT, network security, and engineering teams to ensure cohesive threat response.
• Oversee tuning and optimization of SIEM, IDS/IPS, endpoint protection, and other security tools.
• Maintain accurate incident documentation, prepare reports, and deliver updates on SOC performance and emerging threats.
• Promote continuous improvement through after-action reviews, performance metrics, and adoption of industry best practices.

Qualifications

• Proven experience leading SOC operations or cybersecurity teams in a high-stakes environment.
• Strong technical background in threat detection, incident response, and security monitoring tools.
• Ability to communicate complex cybersecurity issues to both technical and non-technical audiences.
• Commitment to operational excellence, continuous improvement, and proactive threat defense.

A notification to prospective applicants that reviews, and tests for the absence of any illegal drug as defined in 10 CFR 707.4, will be conducted by the employer and a background investigation by the Federal government may be required to obtain an access authorization prior to employment, and that subsequent reinvestigations may be required. The position is covered by the Counterintelligence Evaluation Program regulations at 10 CFR part 709, the announcement should also alert applicants that successful completion of a counterintelligence evaluation may include a counterintelligence-scope polygraph examination.


Executive Order 11246: This position and all hiring decisions will be made without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.


As a federal contractor, we comply with Section 503 of the Rehabilitation Act and VEVRAA. No disability-related inquiries will be made prior to a conditional offer of employment, except as permitted by applicable law


Employee Rights Under the National Labor Relations Act (NLRA): As a federal contractor, the Company complies with Executive Order 13496 and informs employees of their rights under the National Labor Relations Act. Information regarding these rights is available at the workplace and from the National Labor Relations Board.


This position is covered by the Service Contract Labor Standards (SCLS). Compensation and fringe benefits will be provided in accordance with the applicable U.S. Department of Labor wage determination and any applicable collective bargaining agreement.


Medical, dental, vision, and 401k benefits are included with this position.