SOC Director



Raleigh, NC, USA
Posted on Friday, May 31, 2024


SilverSky is seeking an experienced SOC Director responsible for 24x7 SOC Operations focusing our MxDR service portfolio. This role is responsible for the success of the SOC by providing leadership and a continuous improvement approach. You will develop a team environment that promotes excellence, integrity, and professionalism. A culture that works toward the highest standards in security operations while balancing the needs of the business.

This position will also build rapport and provide positive cross-functional collaboration with peer operational leaders of these functions: Technical Sales Engineering, Security Engineering, and MDR Deployment, as well as Sales, Advisory, Compliance, Product and Engineering teams.

Responsibilities include:

  • Lead and manage the 24x7x365 multi-location Security Operations Center providing technical and management oversight.
  • Directly manage SOC Team Leads to proactively identify, prevent and respond to security incidents.
  • Ensure quality oversight for incident identification, assessment, quantification, reporting, communication, mitigation and monitoring.
  • Ensure a high degree of customer satisfaction, compliance to Service Level Agreements (SLA), process adherence, and continual process improvement to achieve operational objectives and mitigate threats.
  • Develop and improve processes to strengthen the current operational activities providing hands-on mentorship as needed.
  • Continually evaluate automation and platform needs with the SOC team and drive a prioritized list of improvements and requirements with Product Engineering and Infrastructure Engineering.
  • Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
  • Provide oversight in identifying ways to optimize visibility of customer security feeds to the SOC as well as optimizing management of defensive capabilities including, but not limited to, blocking within EDR, automated blocking within firewall.
  • Creation of reports, dashboards, and metrics for SOC operations.
  • Drive senior level interactions and improvements with customers, with a “customer empathy” mindset with our target mid-sized enterprise customer.
  • Responsible for team management, scheduling, overall use of resources and initiation of corrective action where required.
  • Partner with HR to establish training plans to increase skills, and achieve continued career progression.

Required Education and Skills:

  • Bachelor of Science from accredited institution or equivalent experience
  • Strong knowledge of incident management, problem management and change management best practices specifically in the MDR, MxDR SOC area.
  • Excellent communication skills with ability to brief senior audiences clearly and concisely.
  • 10 years of Information Security / Cybersecurity experience.
  • 5 years working in a commercial, multi-tenant security or network operations center.
  • 5 years in a leadership role.
  • Experience networking and telecommunications integration, design and architecture.
  • Hold at least one relevant industry certifications (GCIA, GCIH, GCED, CISSP, CISA, CISM, etc.)
  • Building and maintaining high performance teams.
  • Experience with
    • SIEM tools such as FortiSIEM, Splunk, ArcSight, Azure Sentinel, Google Chronicle, etc.
    • Industry leading EDR tools (SentinelOne, CrowdStrike, Defender)
    • SOAR (ForitSOAR, Swimlane, Demisto, etc.)
    • Maintaining metrics and SLAs.
  • Expertise with industry standard frameworks (ISO, NIST, PCI).

Who you are:

  • Passionate about cybersecurity.
  • Passionate about leadership development, coaching and mentoring.
  • Competitive - you want to win by protecting customers better than the competition.
  • Innovative - you seek out innovations and improvements.
  • Business savvy - you understand the balance of running a business and service delivery expenses, seeking to maximize efficiency and effectiveness.
  • Gritty - you don’t get discouraged or stressed easily, you embrace challenges.
  • Resilient – you manage through ambiguity and understand how to make the most of modernizing legacy systems and processes while driving business improvements.

We welcome applications from qualified candidates located in other areas, provided they meet the necessary requirements for this position.