Agile Defense
Join to apply for the
SOC Operations Lead
role at
Agile Defense .
At Agile Defense we know that action defines the outcome and new challenges require new solutions. That’s why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next.
Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests.
Requisition #:
1342
Location:
45 L St NE Washington, District of Columbia 20554 (Full-time, 5x per week)
Clearance Level:
Top Secret
Non-Employee Referral Bonus Eligible:
$2,000
Required Certifications
Microsoft Certified Security Operations Analyst Associate (Must have first day)
CISSP OR CISM (Must obtain within 150 days of start date)
GIAC Incident Response Certification (Must obtain within 150 days of start date)
GIAC Enterprise Incident Response (GEIR)
GIAC Cloud Forensics Responder (GCFR)
GIAC Certified Forensic Analyst (GCFA)
GIAC Network Forensic Analyst (GNFA)
GIAC Certified Incident Handler (GCIH)
GIAC Experienced Forensics Analyst (GX-FA)
GIAC Linux Incident Responder (GLIR)
Summary We are seeking a SOC Lead for an opportunity to lead and manage all Security Operations Center functions. The SOC Lead will ensure unified service delivery across sub-task areas, provide operational direction and influence executive leadership to align security operations with enterprise objectives. The SOC Lead role requires deep expertise in SOC management, incident response and hybrid on-premises/cloud environments. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.
Job Duties And Responsibilities
Manage all SOC operations, ensuring unified and effective service delivery.
Coordinate task execution across sub-task leads to achieve enterprise-level objectives.
Provide strategic and operational direction to SOC teams through subordinate managers.
Oversee the integration and coordination of on-premises and cloud-based SOC capabilities.
Drive continuous improvement in SOC processes to strengthen detection, response and recovery.
Influence organizational practices and approaches to align with cybersecurity priorities.
Communicate effectively with executive leadership and stakeholders on SOC performance and posture.
Ensure SOC operations adhere to the full NIST Cybersecurity Framework: Identify, Protect, Detect, Respond and Recover.
Education, Background, And Years Of Experience
7+ years of experience in SOC operations and incident response including SOC management and an IR commander role.
Additional Skills & Qualifications
Possess the knowledge, skills, tasks, and capabilities described in the NICE Work Roles for Incident Response (PD-WRL-003), Insider Threat Analysis (PD-WRL-005), and Threat Analysis (PD-WRL-006) as outlined in the NICE Work Role Framework.
Managing SOC operations and incident response for enterprise environments (50,000+ endpoints), including 5+ years leading hybrid on-premises/cloud SOCs with full NIST Cybersecurity Framework coverage.
Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
Expertise in managing enterprise SOC operations across on-premises and cloud environments.
Strong background in cybersecurity incident response across large, complex enterprise environments.
Proven ability to align SOC functions with the NIST Cybersecurity Framework.
Experience coordinating subordinate managers and technical leads to deliver cohesive operations.
Skilled at influencing executive leadership and driving organizational adoption of SOC best practices.
Working Conditions
Environmental Conditions: Onsite 5 days a week in Washington, D.C.; Must pass a background investigation.
Strength Demands: Light – 20 lbs. Maximum lifting with frequent lift/carry up to 10 lbs. Light job involves significant walking/standing.
Physical Requirements: Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; Stoop, Kneel, Crouch, or Crawl; See; Push or Pull; Climb (stairs, ladders) or Balance.
Equal Opportunity Employer / Protected Veterans / Individuals With Disabilities We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
#J-18808-Ljbffr
SOC Operations Lead
role at
Agile Defense .
At Agile Defense we know that action defines the outcome and new challenges require new solutions. That’s why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next.
Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests.
Requisition #:
1342
Location:
45 L St NE Washington, District of Columbia 20554 (Full-time, 5x per week)
Clearance Level:
Top Secret
Non-Employee Referral Bonus Eligible:
$2,000
Required Certifications
Microsoft Certified Security Operations Analyst Associate (Must have first day)
CISSP OR CISM (Must obtain within 150 days of start date)
GIAC Incident Response Certification (Must obtain within 150 days of start date)
GIAC Enterprise Incident Response (GEIR)
GIAC Cloud Forensics Responder (GCFR)
GIAC Certified Forensic Analyst (GCFA)
GIAC Network Forensic Analyst (GNFA)
GIAC Certified Incident Handler (GCIH)
GIAC Experienced Forensics Analyst (GX-FA)
GIAC Linux Incident Responder (GLIR)
Summary We are seeking a SOC Lead for an opportunity to lead and manage all Security Operations Center functions. The SOC Lead will ensure unified service delivery across sub-task areas, provide operational direction and influence executive leadership to align security operations with enterprise objectives. The SOC Lead role requires deep expertise in SOC management, incident response and hybrid on-premises/cloud environments. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.
Job Duties And Responsibilities
Manage all SOC operations, ensuring unified and effective service delivery.
Coordinate task execution across sub-task leads to achieve enterprise-level objectives.
Provide strategic and operational direction to SOC teams through subordinate managers.
Oversee the integration and coordination of on-premises and cloud-based SOC capabilities.
Drive continuous improvement in SOC processes to strengthen detection, response and recovery.
Influence organizational practices and approaches to align with cybersecurity priorities.
Communicate effectively with executive leadership and stakeholders on SOC performance and posture.
Ensure SOC operations adhere to the full NIST Cybersecurity Framework: Identify, Protect, Detect, Respond and Recover.
Education, Background, And Years Of Experience
7+ years of experience in SOC operations and incident response including SOC management and an IR commander role.
Additional Skills & Qualifications
Possess the knowledge, skills, tasks, and capabilities described in the NICE Work Roles for Incident Response (PD-WRL-003), Insider Threat Analysis (PD-WRL-005), and Threat Analysis (PD-WRL-006) as outlined in the NICE Work Role Framework.
Managing SOC operations and incident response for enterprise environments (50,000+ endpoints), including 5+ years leading hybrid on-premises/cloud SOCs with full NIST Cybersecurity Framework coverage.
Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
Expertise in managing enterprise SOC operations across on-premises and cloud environments.
Strong background in cybersecurity incident response across large, complex enterprise environments.
Proven ability to align SOC functions with the NIST Cybersecurity Framework.
Experience coordinating subordinate managers and technical leads to deliver cohesive operations.
Skilled at influencing executive leadership and driving organizational adoption of SOC best practices.
Working Conditions
Environmental Conditions: Onsite 5 days a week in Washington, D.C.; Must pass a background investigation.
Strength Demands: Light – 20 lbs. Maximum lifting with frequent lift/carry up to 10 lbs. Light job involves significant walking/standing.
Physical Requirements: Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; Stoop, Kneel, Crouch, or Crawl; See; Push or Pull; Climb (stairs, ladders) or Balance.
Equal Opportunity Employer / Protected Veterans / Individuals With Disabilities We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
#J-18808-Ljbffr