Security Operations Center Manager

Summary

Join Acoustic as a Security Operations Center (SOC) Manager and lead the strategy and operations of our security capabilities. You will oversee daily security program operations, including threat detection, vulnerability management, incident response, and cloud security compliance. This role involves managing a team of security professionals, collaborating with other departments, and proactively identifying and assessing threats. The position requires 3+ years of SOC Analyst/Security Engineer experience and 1+ year leading a SOC. Remote or hybrid work options are available in several locations. Acoustic offers training, a supportive environment, and opportunities for growth.

Requirements

• 3+ years of experience as a SOC Analyst, Security Content Developer and/or Security Engineer
• 1+ year of leading/managing a Security Operations Center
• Strong understanding of attack vectors, persistence mechanisms, and detection avoidance tactics
• Incident management process development and deep understanding of Incident Response frameworks and root cause analysis
• Experience in designing and building security operations centers
• Ability to understand systems quickly, and translate understanding into logic to detect anomalies
• Experience with SIEM/MDR/XDR tools including deployment and management
• Understanding of Linux, Windows, and Mac security concepts
• Knowledge of networking protocols and services such as HTTP, SSH, LDAP, FTP
• Working knowledge of security best practices for Amazon Web Services (AWS) and Azure
• Working knowledge of vulnerability management processes and tools (e.g. Rapid7)
• Must understand exploits, vulnerabilities, network attacks
• Bachelor's degree in STEM fields or equivalent work experience

Responsibilities

• Lead and manage a team of security analysts and engineers, build a high performing team, provide mentorship and coaching, and ensure individual and team success
• Grow and manage threat detection and analysis, security monitoring tools, identify and process threats
• Manage security incidents following documented Incident Response plans and playbooks and ensure timely remediation
• Recommend implementation of counter-measures or mitigating controls
• Lead the management of vulnerability identification and remediation compliance
• Lead cloud security compliance
• Drive continuous improvement, partnering with Engineering, DevOps, and IT as well as external stakeholders
• Measure and report on security performance by tracking key metrics, identify areas of improvement, and report to the CISO and other stakeholders

Preferred Qualifications

• Previous experience with NIDS, HIDS and WAF
• Python/scripting and automation experience
• Attention to detail

Benefits

• Relevant training on security and technologies
• Supportive environment
• Providing opportunities to take on new responsibilities in other areas of the security program