SOC Manager (Top Secret Clearance Required, Onsite)

Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.

Work You’Ll Do

• Oversee day-to-day activities within a 24x7x365 Security Operations Center, maintaining adequate staffing operational coverage, and shift schedules.
• Direct and mentor SOC personnel to achieve operational excellence and promote professional development.
• Lead incident response activities, verifying rapid and effective investigation, containment, and resolution of security events.
• Develop and refine SOC processes, including standard operating procedures and incident response playbooks, to support operational excellence.
• Prepare executive-level reports detailing SOC information, operational metrics, compliance/Service Level Agreement (SLA) status, and emerging risks to inform leadership decisions.

The Team

Deloitte’s Government and Public Services (GPS) practice – our people, ideas, technology, and outcomes—are designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise.

Our Cyber Defense & Resilience offering assists clients in defending against advanced threats by transforming security operations, monitoring technology, data analytics, and threat intelligence. Helps manage and protect dynamic attack surfaces and provides rapid crisis and cyber incident response, ensuring clients can be ready for, respond to, and recover from business disruptions.

Qualifications

Required:

• Bachelors Degree required.
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
• Active Top Secret Clearance required
• Ability to be onsite up to 5 days a week.
• 10 + years of experience within the IA/Cyber Security industry, including at least 4 years managing a SOC with responsibilities for security event monitoring and incident response services within an enterprise network security environment
• Deep understanding of log and monitoring management systems, security event monitoring systems, network-based and host-based intrusion detection systems, firewall technologies, malware detection and enterprise-level antivirus solutions/systems, VPN technologies and encryptions standards.
• At least 4 + years within the following:
• Working knowledge of the various industry standard IA disciplines and generally accepted practices governing the present-day IA industry. These disciplines include security event monitoring, incident response, security architecture and engineering, independent verification and validation of information technology and security infrastructures, compliance and policy practices, system audits, and risk assessments.
• Familiarity with regulatory compliance directives to include various NIST and DHS 4300A/B security controls and FISMA monitoring and reporting requirements.
• Demonstrated experience with managing and ensuring the timely response and investigations of security events and incidents by the SOC
• Experience creating and maintaining shift schedules to ensure 24x7 coverage by operations support personnel.
• Experience with conceptualizing, developing, publishing, and communicating status reports for executive leadership.
• Working knowledge of the various industry standard IA disciplines and generally accepted practices governing the present-day IA industry. These disciplines include security event monitoring, incident response, security architecture and engineering, independent verification and validation of information technology and security infrastructures, compliance and policy practices, system audits, and risk assessments.
• Familiarity with regulatory compliance directives to include various NIST and DHS 4300A/B security controls and FISMA monitoring and reporting requirements.
• Demonstrated experience with managing and ensuring the timely response and investigations of security events and incidents by the SOC
• Experience creating and maintaining shift schedules to ensure 24x7 coverage by operations support personnel.
• Experience with conceptualizing, developing, publishing, and communicating status reports for executive leadership.

As used in this posting, "Deloitte" means Deloitte Transactions and Business Analytics LLP, a subsidiary of Deloitte LLP. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html