SOC Supervisor

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a SOC Supervisor in United States.

This role is a key leadership position within a fast-paced Security Operations Center, responsible for ensuring the effectiveness, consistency, and continuous improvement of daily security monitoring and incident response activities. You will oversee SOC analysts, coordinate real-time incident handling, and ensure that operational workflows meet strict service level and quality standards. Acting as both a tactical incident commander and a strategic people leader, you will guide the team through high-pressure security events while driving long-term process maturity. The position requires a strong balance of technical cybersecurity expertise and team leadership capabilities. You will collaborate closely with internal IT, engineering, and customer stakeholders to ensure timely and effective security responses. This is a high-impact role where your leadership directly strengthens organizational security posture and operational resilience.

• Oversee daily SOC operations, ensuring queue health, ticket prioritization, and efficient alert triage and response
• Act as Incident Commander during high-severity or major security incidents, coordinating response efforts and communications
• Lead stakeholder communication during incidents, including internal teams, customers, and executive leadership
• Ensure adherence to SLAs across detection, triage, escalation, and resolution processes
• Manage SOC staffing, shift schedules, on-call rotations, and workload distribution
• Coach, mentor, and develop SOC analysts across multiple experience levels, supporting performance and career growth
• Conduct regular QA reviews of incident handling, documentation, and case management quality
• Enforce SOC playbooks, SOPs, and standardized workflows to ensure consistency and compliance
• Identify process inefficiencies and drive operational improvements, including automation and tooling enhancements
• Track and report SOC KPIs, operational risks, and performance metrics to leadership
• Partner with engineering, detection, and IT teams to improve detection capabilities and reduce false positives
• Lead root cause analysis and corrective action initiatives for operational issues

Requirements:

• 5+ years of experience in Security Operations, Incident Response, or Cybersecurity Operations
• 2+ years of leadership experience in a SOC or similar security operations environment
• Proven experience managing major security incidents and acting in an incident command role
• Strong understanding of SOC workflows, escalation processes, and alert triage methodologies
• Experience with SOC tools such as SIEM, SOAR, EDR/XDR, and ticketing/case management platforms
• Ability to manage operational queues, prioritize workloads, and maintain SLA performance
• Strong communication skills with experience engaging technical teams, customers, and executive stakeholders
• Experience with KPI reporting, performance tracking, and operational analytics
• Knowledge of SOC playbooks, SOP governance, and process standardization practices
• Strong coaching, leadership, and team development skills
• Ability to remain calm, structured, and decisive under high-pressure situations
• Bachelor’s degree in Cybersecurity, IT, Computer Science, or related field preferred
• Preferred certifications such as Security+, CySA+, GCIH, GCIA, or CISSP

Benefits:

• Competitive salary ranging from $110,000 to $115,000 annually
• Comprehensive health coverage including medical, dental, and vision insurance
• 401(k) retirement plan with company match
• Flexible spending and health savings accounts
• Paid time off, paid parental leave, and 10 paid holidays plus floating holidays
• Short-term and long-term disability insurance fully covered
• Life and AD&D insurance with optional supplemental coverage
• Employee assistance and wellness programs
• Remote-first work arrangement with occasional travel (3–4 times per year)
• Professional development opportunities in a growing cybersecurity environment.