The Regional Security Operations Center (RSOC) Lead is responsible for supporting and overseeing Regional Security Operations Centers (RSOC). This role will aid the SOC Manager in coordinating cybersecurity efforts, managing daily operations, and enhancing the SOC’s capability to detect, prevent, and respond to security threats. The ideal candidate is detail-oriented, highly collaborative, and possesses a strong understanding of cybersecurity principles.
Skills Required:
Operational Support:
Assist with daily security operations, ensuring consistent communication and effective response to emerging threats across all SOCs in the region.
Support implementation of cybersecurity policies, procedures, and incident response protocols.
Coordinate resources and activities among regional SOCs to standardize and enhance security operations
Incident Response and Threat Monitoring:
Monitor and respond to security events in collaboration with the regional SOC teams, ensuring timely containment, investigation, and remediation of incidents.
Assist in analyzing security incidents to determine root causes, impacts, and resolution strategies.
Coordinate with regional IT and security staff to facilitate a cohesive response to security threats.
Training and Mentorship:
Mentor and train community college students involved in SOC operations, fostering a learning environment and developing essential cybersecurity skills.
Collaborate with the SOC Manager to conduct hands-on training sessions and workshops for students and staff to improve their cybersecurity skills.
Documentation and Reporting:
Prepare reports and documentation related to SOC activities, including incident response logs, weekly updates, and monthly operational reports.
Maintain accurate records of security incidents, resolutions, and operational metrics to inform continuous improvement.
Collaboration and Relationship Management:
Serve as a point of contact between the SOC Manager, community college stakeholders, and regional IT/security staff.
Participate in regular SOC meetings, regional cybersecurity initiatives, and interdepartmental coordination to maintain alignment across all operations.
Strong knowledge of cybersecurity principles, threat analysis, and incident response.
Familiarity with SIEM tools, firewalls, and other security technologies.
Excellent communication and organizational skills, with the ability to work collaboratively with diverse teams.
Strong problem-solving skills and attention to detail.
Experience Required:
1-3 years of experience in a SOC, cybersecurity, or IT operations role
Education Required:
n/a ..we're looking for someone who has experience
Education Preferred:
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. Relevant certifications (e.g., CompTIA Security+, CISSP, CISM) are a plus.
Additional Information:
This is a hybrid position, so we're looking for someone who is based in Arizona, and preferably someone who is local to the Greater Phoenix Region.