Cybersecurity Operations Technical Lead (SOC)

TL;DR

Cybersecurity Operations Technical Lead (SOC): Leading the engineering oversight and operational execution of Security Operations Center services for the SBA Enterprise Cybersecurity Services program with an accent on threat detection, incident response, and SOC platform optimization. Focus on managing SIEM/EDR operations, coordinating multi-tier SOC activities, and ensuring alignment with NIST and FISMA federal standards.

Company

hirify.global provides specialized cybersecurity and enterprise services to federal government agencies.

What you will do

• Provide technical leadership and operational oversight for 24x7x365 enterprise SOC operations.
• Lead security monitoring, threat detection, event correlation, and incident response activities.
• Manage and optimize SIEM, EDR, IDS/IPS, and vulnerability management platforms.
• Develop and maintain operational procedures, incident response playbooks, and escalation workflows.
• Coordinate incident response with federal leadership, legal, and mission stakeholders.
• Develop executive briefings, operational dashboards, and performance metrics aligned with SLAs.

Requirements

• Bachelor's degree in Cybersecurity, IT, Computer Science, or a related technical field.
• Minimum 10 years of experience in cybersecurity operations, SOC engineering, or incident response.
• Minimum 5 years of experience leading enterprise SOC operations within a federal environment.
• Hands-on expertise with SIEM, EDR, IDS/IPS, and log aggregation platforms.
• Deep understanding of federal frameworks: FISMA, NIST RMF, NIST SP 800-53, and NIST SP 800-61.
• Experience with cloud security monitoring in AWS, Azure, or hybrid environments.

Nice to have

• Certifications: CISSP, GCIH, GCFA, CISM, CySA+, or CEH.
• Splunk Certified Architect or equivalent SIEM certification.
• AWS or Microsoft Azure Security Certifications.