Job Openings SOC Manager

About the job SOC Manager

Security Operations Center Manager

About Cybertrust

CyberTrust Massachusetts is a non-profit committed to growing and diversifying the cyber workforce, creating new and innovative opportunities for education and employment, and hardening the security posture of under-resourced local entities. CyberTrust enhances cyber education programs with hands-on, experiential learning, both through our state-of-the-art cyber range and by placing students in a live security operations center (SOC) that serves local governments, nonprofits and small businesses. CyberTrust SOC provides local governments with Advisory and Operational cybersecurity services, with student interns serving in key delivery roles. Advisory services include cyber assessments and scanning, program planning, and policy development. Operational services include real-time monitoring and response delivered from our campus-based and corporate partner SOC facilities, including Bridgewater State University, the Richard E Neal Cybersecurity Center of Excellence at Union Station in Springfield, and our newest location at Rapid7 in Boston.

About the Role:

We are seeking an experienced SOC Manager to lead our security operations team and play a crucial role in safeguarding the critical infrastructure of Massachusetts municipalities, school districts, and non-profit organizations. You will lead and mentor 50 student analyst interns annually, while overseeing the efficient operation of our 24/7 SOC, managing up to 10,000+ endpoints across dozens of clients with rapid expansion. In this role, you'll ensure exceptional delivery of our SentinelOne Managed EDR services, execute comprehensive quarterly stakeholder reporting, and serve as the primary technical escalation point for complex security incidents. This is a hybrid leadership position requiring 2-3 days onsite presence per week in Springfield, MA, with significant client interaction and team development responsibilities.

Responsibilities:

Strategic Leadership & Operations:

  • Lead and mentor 50 student analyst interns annually, executing training curriculum and implementing continuous improvements to enhance operational readiness
  • Oversee SOC operations for municipal, educational, and non-profit clients, scaling to support rapid growth to 10,000+ endpoint agents
  • Collaborate with Director of Cyber Security Operations to refine SOC procedures, training methodologies, and operational processes

Client Management & Reporting:

  • Execute quarterly stakeholder reporting to municipal officials, school superintendents, and non-profit executives, incorporating feedback to enhance reporting value
  • Engage with clients proactively to strengthen relationships and identify security improvement opportunities
  • Translate emerging cyber threat intelligence into actionable insights for team and clients

Incident Response & Technical Operations:

  • Serve as primary escalation point for complex security incidents across client environments, ensuring rapid response and comprehensive documentation
  • Conduct security incident analysis and response utilizing SentinelOne and integrated security tools
  • Ensure adherence to established SOC policies, procedures, and escalation protocols

Platform & Process Management:

  • Manage SentinelOne platform including configuration, tuning, policy optimization, and support ticket coordination on behalf of clients
  • Direct proactive EDR deployment management and feature enablement tailored to municipal, educational, and non-profit environments
  • Drive continuous SOC improvement by identifying and implementing process enhancements and automation opportunities

Qualifications:

Required Qualifications:

  • Minimum 5 years of Security Operations Center (SOC) analyst experience with at least 3 years in team lead, supervisory, or management roles
  • Demonstrated expertise with SentinelOne EDR platform from both engineering and senior analyst perspectives
  • Proven experience mentoring junior and early-career security analysts in fast-paced environments
  • Strong incident response capabilities including security incident analysis, root cause diagnosis, and remediation strategy implementation
  • Comprehensive understanding of security frameworks, compliance requirements, and industry best practices
  • Excellent stakeholder engagement and communication skills with experience presenting to municipal leadership and technical audiences

Preferred Qualifications:

  • MSSP or startup environment experience managing security operations across multiple client environments
  • Working knowledge of Python, REST APIs, and security automation tools for process improvement
  • Experience scaling SOC operations during periods of rapid client and endpoint growth
  • Background working with municipal, educational, or non-profit organizations
  • Strong analytical and problem-solving skills with ability to translate technical concepts for diverse stakeholders

Or refer someone