AOUSC - SOC Operations Lead / Managed Detection & Response (MDR) Lead

Remote Full-time
Position Title
SOC Operations Lead / Managed Detection & Response (MDR) Lead
Position Overview
The SOC Operations Lead will oversee 24x7x365 Security Operations Center (SOC) and Managed Detection & Response (MDR) operations supporting a large federal enterprise environment. The Lead will direct SOC analysts, incident responders, and MDR personnel responsible for security monitoring, alert triage, incident analysis, escalation, containment coordination, reporting, and continuous operational improvement.
The ideal candidate possesses deep experience leading enterprise SOC operations supporting federal agencies, including SIEM operations, endpoint detection and response (EDR), cloud security monitoring, incident coordination, and executive cyber reporting.
Key Responsibilities
• Lead enterprise SOC and MDR operations supporting on-premises and cloud environments.
• Oversee 24x7 monitoring, detection, triage, and escalation activities.
• Direct operational workflows for:
• SIEM monitoring,
• alert management,
• incident coordination,
• case management,
• and operational reporting.
• Manage analyst teams supporting:
• Splunk,
• Microsoft Sentinel,
• CrowdStrike,
• Sysmon,
• Windows event logging,
• and cloud telemetry platforms.
• Develop and maintain SOC SOPs, playbooks, runbooks, escalation matrices, and reporting procedures.
• Lead operational metrics reporting including:
• MTTD,
• MTTR,
• false positive rates,
• automation effectiveness,
• analyst productivity,
• and incident impact assessments.
• Coordinate closely with Threat Hunting, CTI, Detection Engineering, and Incident Response teams.
• Brief executives and government leadership on significant incidents, operational trends, and emerging threats.
• Support proposal development, oral presentations, staffing, and transition planning.
Required Qualifications
• 10+ years of cybersecurity operations experience.
• 5+ years leading enterprise SOC or MDR environments.
• Experience supporting federal civilian or DoD environments.
• Experience managing large-scale SOC operations in environments exceeding:
• 10,000+ users,
• enterprise cloud environments,
• and large SIEM deployments.
• Experience with:
• Splunk Enterprise Security,
• Microsoft Sentinel,
• CrowdStrike,
• EDR/XDR platforms,
• SOAR technologies,
• and cloud security monitoring.
• Deep understanding of:
• MITRE ATT&CK,
• incident response,
• detection engineering,
• and threat-informed defense.
• Strong executive briefing and oral presentation skills.
Preferred Certifications
• CISSP
• GCIA
• GCIH
• GMON
• GSOC
• Splunk Architect/Admin certifications
• Microsoft Security certifications

Apply tot his job

Apply To this Job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Medical Email Chat Support Agent

Remote

[Remote] Enterprise Account Executive - Bay Area

Remote

[Remote] Tax Preparer (US GAAP)

Remote

Online Order Filling Team Associate

Remote

Workforce Planning Coordinator

Remote

Experienced Business Analyst and Data Entry Specialist – Part Time Remote Opportunity with Competitive Hourly Rate

Remote

[Remote/WFM] Jetblue Airlines Hiring: Data Entry Remote Jobs

Remote

[Work From Home] Independent Sales Representative.

Remote

**Part Time Data Entry Specialist (Temporary) - Join arenaflex's Fastest-Growing Healthcare Staffing Firm**

Remote

Entry Level: Work From Home

Remote
← Back