Overview
Client is seeking an experienced Manager of Cybersecurity Operations to serve as the primary liaison between internal IT leadership and the organization's outsourced Security Operations Center (SOC) / Managed Security Service Provider (MSSP). This individual will oversee day-to-day cybersecurity operations, ensure high-quality security service delivery, coordinate incident response efforts, and continuously improve the organization's security posture.
This is a highly visible leadership role requiring strong technical cybersecurity knowledge, vendor management experience, executive communication skills, and the ability to lead both operational and strategic security initiatives.
Responsibilities
- Serve as the primary relationship manager for the outsourced SOC/MSSP.
- Oversee daily MSSP operations including ticket queues, alert quality, investigations, and adherence to security runbooks.
- Define, monitor, and enforce SLAs and KPIs to ensure high-quality service delivery.
- Lead weekly operational meetings, monthly performance reviews, and quarterly business reviews with the MSSP.
- Coordinate security incidents between internal teams and the MSSP.
- Develop, maintain, and improve incident response playbooks.
- Integrate threat intelligence into security controls and operational processes.
- Participate in tabletop exercises and purple team exercises.
- Lead proactive threat hunting activities using MITRE ATT&CK and emerging threat intelligence.
- Oversee integrations between MSSP tooling and internal technologies including SIEM, SOAR, ticketing systems, and security platforms.
- Improve detection capabilities by tuning monitoring tools and reducing false positives.
- Manage lifecycle and effectiveness of security technologies supported by the MSSP.
- Ensure security operations align with NIST, HIPAA, PCI DSS, and organizational security standards.
- Support third-party risk management and vendor assessments.
- Develop executive dashboards, board-level metrics, and cybersecurity reporting.
- Translate technical cybersecurity risks into business language for executive leadership.
- Mentor and develop cybersecurity analysts while promoting knowledge sharing between internal staff and the MSSP.
Required Qualifications
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience).
- 10+ years of cybersecurity or related IT experience (14+ years without a degree).
- 5+ years leading cybersecurity teams or security operations.
- Experience managing outsourced SOC/MSSP providers.
- Strong understanding of incident response, cyber kill chain, MITRE ATT&CK, and threat hunting.
- Hands-on experience with:
- SIEM
- SOAR
- Endpoint Detection & Response (EDR)
- Firewalls
- Vulnerability Management platforms
- Strong leadership, vendor management, communication, and project management skills.
- Ability to communicate effectively with both technical teams and executive leadership.
Preferred Qualifications
- Experience with Python or security automation.
- Cloud security experience (AWS, Azure, Google Cloud Platform).
- Healthcare industry experience.
- Familiarity with HIPAA, HITECH, and healthcare security requirements.
- Strategic mindset focused on continuous improvement.
Certifications
One or more of the following certifications:
CISSP (ISC²)
ISACA Certifications (CISM, CISA, etc.)
CompTIA Security+
GIAC Certifications
Other relevant cybersecurity certifications