Responsibilities:
- Manages SOC staff to perform monitoring, threat hunting, analysis, resolution, and reporting of security incidents and vulnerabilities across all IT Infrastructure systems and applications.
- Direct and optimize SOC operations, ensuring robust 24/7 cybersecurity monitoring.
- Oversee and coordinate rapid and effective responses to security incidents, including containment, eradication, and recovery.
- Collaborate with internal and external stakeholders for threat intelligence sharing.
- Continuously update and test the incident response plan to ensure preparedness for emerging cyber threats.
- Bachelor’s Degree in Information Technology, Engineering or related technology field from an accredited college or university.
- 10 years’ experience in a lead role managing major data center or IT Security Operations Center supporting a broad range of IT capabilities.
- Experience using IT tools (Microsoft Sentinel and M365 Defender preferred) to monitor security incidents and vulnerabilities.
- Experience performing threat hunting across complex IT architectures.
- Ability to work in a dynamic work environment and ability to coordinate and perform multiple assignments.
- Demonstrated excellent communication skills - both written and verbal.
- Demonstrated experience working independently to resolve complex issues.
- Relevant industry certifications, including, but not limited to GIAC Security Operations Manager (GSOM), GIAC Certified Incident Handler (GCIH), GIAC Certified Detection Analyst (GCDA), GIAC Certified Intrusion Analyst (GCIA), EC-Council Certified Incident Handler (ECIH) or other relevant certifications.
- Ability to pass a Government background investigation.
Phoenix Cyber is a national provider of cybersecurity engineering services, operations services, sustainment services and managed security services to organizations determined to strengthen their security posture and enhance the processes and technology used by their security operations team.
Phoenix Cyber is an equal opportunity employer and complies with Executive Order 11246, Section 503 of the Rehabilitation Act of 1973, the Vietnam Era Veteran's Readjustment Assistance Act (VEVRAA), all amendments to these regulations, and applicable executive orders, federal, and state regulations. Applicants are considered without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, and/or veteran status.
Phoenix Cyber participates in E-Verify to confirm the employment eligibility of all newly-hired employees. To learn more about E-Verify, including your rights and responsibilities, go to https://www.e-verify.gov/
Similar Jobs
What We Do
Phoenix Cyber is a national provider of cybersecurity engineering, operations, and sustainment services to enterprise and government organizations determined to strengthen their security posture and enhance the processes and technology used by their security operations center. Our team comprises senior cybersecurity consultants and engineers with expertise in architecting results-oriented, cybersecurity frameworks; and the operational processes to ensure accurate incident detection, enrichment, and response. Our unique blend of security automation, orchestration, and proven best practices differentiates Phoenix-architected solutions from traditional cybersecurity services. Cybersecurity Services - Security Engineering (plan, architect, design, implement, integrate, document, and optimize) - Security Operations (identify, protect, detect, respond, recover processes and best practices) - Sustainment Services (manage, maintain, update, upgrade, optimize, support) - Federal Government Services (contracts with U.S. Navy, FAA, DLA, and CIO-SP3) Capabilities - Data Protection - Endpoint Security - Network Security - Perimeter Security - Phishing Detection and Response - Security Orchestration, Automation, and Response (SOAR) - SIEM - Threat Intelligence - Threat Hunting Security Tools AWS, Microsoft, Swimlane, UiPath
.png){kind=logo}
