Security Operations (SOC) Manager
Remote•May 2, 2024
Marco is a one-stop shop for all things business tech. Our employees are “movers and shakers” and our company is always striving to do what’s right. Does this sound like a culture you want to be a part of? We’re hiring a new team member to help take Marco’s technology further – working full-time, Monday - Friday, 8am-5pm. More about us. We do it all – from copy and print solutions to IT and managed services. We are an organization led by salespeople with 650+ engineers ready to fix any and all issues. We have offices in 12 states and service nationally. Join our growing team. You won’t regret it.The Security Operations Manager is a critical Marco leadership role responsible for managing the day-to-day operations of our Security Operations Center (SOC). The Security Operations Manager will lead a team of security analysts and engineers, collaborate with other Service teams, IS, stakeholders, and stay up to date with emerging security threats and trends. In this role, you are responsible for developing and implementing security policies and procedures to ensure the security of our company's networks, systems, and data as well as our MSP customers' networks and systems.
ESSENTIAL FUNCTIONS:
- 1. Manage the Security Operations team members as follows:
- · Lead, coach and train team members.
- · Develop and implement strategic initiatives for team.
- · Be an escalation point of contact to handle issues and involve direct leadership as needed.
- · Monitor team coverage, oversee personal time off approval, make sure back-ups are in place and redistribute work to cover when others are out.
- · Monitor staffing and equipment needs.
- · Conduct performance reviews and make compensation decisions.
- · Manage the day-to-day operations of the Security Operations Center (SOC) and lead a team of security analysts and engineers.
- · Develop and implement security policies, procedures, and best practices to ensure the security of our company's networks, systems, and data as well as our MSP customers' networks and systems.
- · Identify and analyze security risks and vulnerabilities and develop and implement appropriate security controls and countermeasures for our company and MSP customers.
- · Monitor security systems and tools and respond to security incidents and events in a timely manner for our company and MSP customers.
- · Conduct security assessments and audits for our company and MSP customers and provide recommendations for remediation and improvement.
- · Collaborate with other Service teams, IS, stakeholders, and external vendors to ensure effective communication, coordination, and collaboration on security-related issues for our company and MSP customers.
- · Manage security projects and initiatives for our company and MSP customers and ensure timely completion within budget and scope.
- · Develop and maintain metrics, reports, and dashboards to measure the effectiveness of the security program and communicate key security metrics and trends to stakeholders for our company and MSP customers.
- · Stay up to date with emerging security threats, technologies, and trends, and ensure our security program evolves to address new challenges and risks for our company and MSP customers.
- 2. Assist with compliance initiatives such as security frameworks, compliance programs, and regulatory requirements.
- 3. Assist with ownership, development, and maturity of policies and procedure development standards.
- 4. Act in accordance with Marco policies and procedures as set forth in the employee handbook.
- 5. Attend required company and departmental meetings.
- 6. Perform other related duties as assigned.
EDUCATION AND EXPERIENCE:
- Bachelor’s degree in Computer Science or Information Technology - Master's Degree desirable
- 8+ years of experience in information security, with at least 3 years in a leadership or management role
- OR equivalent combination of the above
- Proven experience with security concepts and technologies
LICENSE AND CERTIFICATIONS:
- Current high-level industry recognized certifications including one or more of the following: CISSP, CISM, CISA, or similar required.
- Successful completion of an employment background check including criminal and financial history.
- Valid driver’s license, proof of personal insurance, and an acceptable driving record.
REQUIRED SKILLS:
- Strong knowledge of security operations, incident response, security monitoring, and security technologies
- Relevant certifications such as CISSP, CISM, or GIAC are highly desirable
- Experience with security frameworks and standards such as ISO 27001, NIST, and PCI DSS
- Experience with security tools and technologies such as SIEM, IDS/IPS, firewalls, and vulnerability scanners
- Strong communication, leadership, and collaboration skills
- Ability to manage multiple projects and priorities in a fast-paced environment1.
- Self-starter with the ability to perform with little or no direct supervision.
- Excellent communication skills in working with technical and non-technical people and the ability to develop and maintain collaborative relations among all levels of an organization.
- Treats people with respect;
- Works with integrity and ethically;
- Upholds organizational values.
- Follows policies and procedures;
- Completes administrative tasks correctly and on time;
- Supports organization's goals and values.
- Demonstrates accuracy and thoroughness; Looks for ways to improve and promote quality;
- Applies feedback to improve performance; Monitors own work to ensure quality.