Security System Administrator – Lead (Cybersecurity)

TL;DR

Security System Administrator – Lead (Cybersecurity): Designing and standardizing Security Operations Center (SOC) capabilities, including processes, workflows, playbooks, and tooling standards for Tier 1 and Tier 2 operations with an accent on detection, triage, and response procedures. Focus on developing operational models, leading SOC readiness reviews, and executing transitions to steady-state execution.

Location: Hybrid, Washington, DC. USA - Must Work EST (8:30AM - 5:30PM). U.S. Citizen required and eligible to support federal contracting environments.

Company

hirify.global provides security operations and consulting services for federal contracting environments.

What you will do

• Design SOC operating models, escalation paths, roles, and responsibilities for Tier 1 and Tier 2 functions.
• Develop and maintain workflows, playbooks, SOPs, and runbooks for detection and response.
• Establish alert triage criteria, investigation workflows, and response standards.
• Define configuration standards for SIEM, SOAR, and EDR platforms.
• Lead SOC readiness reviews, validation exercises, and operational assessments.
• Execute transition plans to steady-state SOC operations and collaborate with engineering, threat detection, and compliance teams.

Requirements

• Bachelor’s degree in Cybersecurity, IT, Computer Science, or related field.
• 6–9+ years in Security Operations, SOC Engineering, or Security Administration with leadership experience.
• Experience designing and implementing SOC processes, workflows, and operational models.
• Hands-on knowledge of SIEM, SOAR, and EDR platforms, including configuration.
• Experience defining alert triage, incident investigation, and response procedures.
• Familiarity with security operations frameworks and best practices.
• Strong documentation, process development, collaboration, and communication skills.