Agile Defense, Inc.
At Agile Defense we know that action defines the outcome and new challenges require new solutions. That’s why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next.
Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests.
Requisition # 1342
Job Title:
SOC Lead
Location:
5x/per week 45 L St NE Washington, District of Columbia 20554
Clearance Level:
Top Secret
Required Certification(s):
Microsoft Certified Security Operations Analyst Associate (Must have first day)
CISSP OR CISM (Must obtain within 150 days of start date)
GIAC Incident Response Certification (Must obtain within 150 days of start date)
GIAC Enterprise Incident Response (GEIR)
GIAC Cloud Forensics Responder (GCFR)
GIAC Certified Forensic Analyst (GCFA)
GIAC Network Forensic Analyst (GNFA)
GIAC Certified Incident Handler (GCIH)
GIAC Experienced Forensics Analyst (GX-FA)
GIAC Linux Incident Responder (GLIR)
Non-Employee Referral Bonus Eligible:
$2,000
SUMMARY We are seeking a SOC Lead for an opportunity to lead and manage all Security Operations Center functions. The SOC Lead will ensure unified service delivery across sub-task areas, provide operational direction and influence executive leadership to align security operations with enterprise objectives.
The SOC Lead role requires deep expertise in SOC management, incident response and hybrid on-premises/cloud environments. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.
JOB DUTIES AND RESPONSIBILITIES
Manage all SOC operations, ensuring unified and effective service delivery.
Coordinate task execution across sub-task leads to achieve enterprise-level objectives.
Provide strategic and operational direction to SOC teams through subordinate managers.
Oversee the integration and coordination of on-premises and cloud-based SOC capabilities.
Drive continuous improvement in SOC processes to strengthen detection, response and recovery.
Influence organizational practices and approaches to align with cybersecurity priorities.
Communicate effectively with executive leadership and stakeholders on SOC performance and posture.
Ensure SOC operations adhere to the full NIST Cybersecurity Framework: Identify, Protect, Detect, Respond and Recover.
QUALIFICATIONS Required Certifications
Microsoft Certified Security Operations Analyst Associate (Must have first day)
CISSP OR CISM (Must obtain within 150 days of start date)
GIAC Incident Response Certification (Must obtain within 150 days of start date)
GIAC Enterprise Incident Response (GEIR)
GIAC Cloud Forensics Responder (GCFR)
GIAC Certified Forensic Analyst (GCFA)
GIAC Network Forensic Analyst (GNFA)
GIAC Certified Incident Handler (GCIH)
GIAC Experienced Forensics Analyst (GX-FA)
GIAC Linux Incident Responder (GLIR)
Education, Background, and Years of Experience 7+ years of experience in SOC operations and incident response including SOC management and an IR commander role.
ADDITIONAL SKILLS & QUALIFICATIONS Required Skills
Possess the knowledge, skills, tasks, and capabilities described in the NICE Work Roles for Incident Response (PD-WRL-003), Insider Threat Analysis (PD-WRL-005), and Threat Analysis (PD-WRL-006) as outlined in the NICE Work Role Framework.
Managing SOC operations and incident response for enterprise environments (50,000+ endpoints), including 5+ years leading hybrid on-premises/cloud SOCs with full NIST Cybersecurity Framework coverage.
Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
Expertise in managing enterprise SOC operations across on-premises and cloud environments.
Strong background in cybersecurity incident response across large, complex enterprise environments.
Proven ability to align SOC functions with the NIST Cybersecurity Framework.
Experience coordinating subordinate managers and technical leads to deliver cohesive operations.
Skilled at influencing executive leadership and driving organizational adoption of SOC best practices.
WORKING CONDITIONS Environmental Conditions
Onsite 5 days a week in Washington, D.C.
Must pass a background investigation
Strength Demands
Light – 20 lbs. Maximum lifting with frequent lift/carry up to 10 lbs. A job is light if less lifting is involved but significant walking/standing is done or if done mostly sitting but requires push/pull on arm or leg controls.
Physical Requirements
Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; Stoop, Kneel, Crouch, or Crawl; See; Push or Pull; Climb (stairs, ladders) or Balance (ascend / descend, work atop, traverse).
Employees of Agile Defense are our number one priority, and the importance we place on our culture here is fundamental. Our culture is alive and evolving, but it always stays true to its roots. Here, you are valued as a family member, and we believe that we can accomplish great things together. Agile Defense has been highly successful in the past few years due to our employees and the culture we create together.
What makes us Agile? We call it the 6Hs, the values that define our culture and guide everything we do. Together, these values infuse vibrancy, integrity, and a tireless work ethic into advancing the most important national security and critical civilian missions. It's how we show up every day. It's who we are.
We also believe in supporting our employees by offering a competitive and comprehensive benefits package. To explore the benefits we offer, please visit our website under the Careers section.
Happy
Be Infectious.
Helpful
Be Supportive.
Honest
Be Trustworthy.
Humble
Be Grounded.
Hungry
Be Eager.
Hustle
Be Driven.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
#J-18808-Ljbffr
Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests.
Requisition # 1342
Job Title:
SOC Lead
Location:
5x/per week 45 L St NE Washington, District of Columbia 20554
Clearance Level:
Top Secret
Required Certification(s):
Microsoft Certified Security Operations Analyst Associate (Must have first day)
CISSP OR CISM (Must obtain within 150 days of start date)
GIAC Incident Response Certification (Must obtain within 150 days of start date)
GIAC Enterprise Incident Response (GEIR)
GIAC Cloud Forensics Responder (GCFR)
GIAC Certified Forensic Analyst (GCFA)
GIAC Network Forensic Analyst (GNFA)
GIAC Certified Incident Handler (GCIH)
GIAC Experienced Forensics Analyst (GX-FA)
GIAC Linux Incident Responder (GLIR)
Non-Employee Referral Bonus Eligible:
$2,000
SUMMARY We are seeking a SOC Lead for an opportunity to lead and manage all Security Operations Center functions. The SOC Lead will ensure unified service delivery across sub-task areas, provide operational direction and influence executive leadership to align security operations with enterprise objectives.
The SOC Lead role requires deep expertise in SOC management, incident response and hybrid on-premises/cloud environments. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.
JOB DUTIES AND RESPONSIBILITIES
Manage all SOC operations, ensuring unified and effective service delivery.
Coordinate task execution across sub-task leads to achieve enterprise-level objectives.
Provide strategic and operational direction to SOC teams through subordinate managers.
Oversee the integration and coordination of on-premises and cloud-based SOC capabilities.
Drive continuous improvement in SOC processes to strengthen detection, response and recovery.
Influence organizational practices and approaches to align with cybersecurity priorities.
Communicate effectively with executive leadership and stakeholders on SOC performance and posture.
Ensure SOC operations adhere to the full NIST Cybersecurity Framework: Identify, Protect, Detect, Respond and Recover.
QUALIFICATIONS Required Certifications
Microsoft Certified Security Operations Analyst Associate (Must have first day)
CISSP OR CISM (Must obtain within 150 days of start date)
GIAC Incident Response Certification (Must obtain within 150 days of start date)
GIAC Enterprise Incident Response (GEIR)
GIAC Cloud Forensics Responder (GCFR)
GIAC Certified Forensic Analyst (GCFA)
GIAC Network Forensic Analyst (GNFA)
GIAC Certified Incident Handler (GCIH)
GIAC Experienced Forensics Analyst (GX-FA)
GIAC Linux Incident Responder (GLIR)
Education, Background, and Years of Experience 7+ years of experience in SOC operations and incident response including SOC management and an IR commander role.
ADDITIONAL SKILLS & QUALIFICATIONS Required Skills
Possess the knowledge, skills, tasks, and capabilities described in the NICE Work Roles for Incident Response (PD-WRL-003), Insider Threat Analysis (PD-WRL-005), and Threat Analysis (PD-WRL-006) as outlined in the NICE Work Role Framework.
Managing SOC operations and incident response for enterprise environments (50,000+ endpoints), including 5+ years leading hybrid on-premises/cloud SOCs with full NIST Cybersecurity Framework coverage.
Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
Expertise in managing enterprise SOC operations across on-premises and cloud environments.
Strong background in cybersecurity incident response across large, complex enterprise environments.
Proven ability to align SOC functions with the NIST Cybersecurity Framework.
Experience coordinating subordinate managers and technical leads to deliver cohesive operations.
Skilled at influencing executive leadership and driving organizational adoption of SOC best practices.
WORKING CONDITIONS Environmental Conditions
Onsite 5 days a week in Washington, D.C.
Must pass a background investigation
Strength Demands
Light – 20 lbs. Maximum lifting with frequent lift/carry up to 10 lbs. A job is light if less lifting is involved but significant walking/standing is done or if done mostly sitting but requires push/pull on arm or leg controls.
Physical Requirements
Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; Stoop, Kneel, Crouch, or Crawl; See; Push or Pull; Climb (stairs, ladders) or Balance (ascend / descend, work atop, traverse).
Employees of Agile Defense are our number one priority, and the importance we place on our culture here is fundamental. Our culture is alive and evolving, but it always stays true to its roots. Here, you are valued as a family member, and we believe that we can accomplish great things together. Agile Defense has been highly successful in the past few years due to our employees and the culture we create together.
What makes us Agile? We call it the 6Hs, the values that define our culture and guide everything we do. Together, these values infuse vibrancy, integrity, and a tireless work ethic into advancing the most important national security and critical civilian missions. It's how we show up every day. It's who we are.
We also believe in supporting our employees by offering a competitive and comprehensive benefits package. To explore the benefits we offer, please visit our website under the Careers section.
Happy
Be Infectious.
Helpful
Be Supportive.
Honest
Be Trustworthy.
Humble
Be Grounded.
Hungry
Be Eager.
Hustle
Be Driven.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
#J-18808-Ljbffr