SBA - SOC Program Manager

SOC Program Manager – Job Description

Position Summary

Essential Duties and Responsibilities

• Provide overall management and operational oversight of the SOC and cybersecurity operations support services.
• Serve as the primary interface with the Government Program Manager, Contracting Officer Representative (COR), and executive stakeholders.
• Lead execution of cybersecurity operations, continuous monitoring, incident response, threat detection, and vulnerability management activities.
• Manage cybersecurity policy, governance, and compliance activities in alignment with Task Area 3.5.2 requirements.
• Coordinate Risk Management Framework (RMF), FISMA, POA&M, audit readiness, and assessment activities.
• Develop and maintain Program Management Plans (PMP), staffing plans, transition plans, schedules, risk registers, and status reports.
• Provide leadership and oversight for 24x7x365 SOC operations and escalation procedures.
• Ensure compliance with NIST SP 800-53, NIST RMF, FedRAMP, CISA directives, and federal cybersecurity standards.
• Oversee incident response coordination, root cause analysis, remediation tracking, and executive reporting.
• Manage cybersecurity operational metrics, dashboards, Service Level Agreements (SLAs), and Quality Assurance Surveillance Plan (QASP) reporting.
• Coordinate vulnerability assessments, penetration testing support, security monitoring, and remediation activities.
• Support cybersecurity policy development, implementation, and compliance validation activities.
• Provide executive-level briefings and recommendations regarding cybersecurity risks, incidents, and operational readiness.
• Manage subcontractors, personnel performance, staffing levels, and resource allocation.
• Ensure timely delivery of all contractual deliverables, reports, and technical documentation.
• Support continuity of operations (COOP) and disaster recovery planning activities for cybersecurity operations.

Minimum Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Information Assurance, or related discipline. Additional relevant experience may substitute for degree requirements.
• Minimum of 10 years of progressive experience managing cybersecurity programs, SOC operations, or enterprise cyber operations in a federal environment.
• Minimum of 5 years of experience leading cybersecurity operations teams supporting federal agencies.
• Demonstrated experience supporting FISMA, RMF, ISCM, vulnerability management, audit readiness, and incident response activities.
• Experience managing enterprise SOC operations and continuous monitoring programs.
• Strong understanding of federal cybersecurity frameworks including NIST SP 800-37, NIST SP 800-53 Rev. 5, NIST SP 800-61, NIST SP 800-137, FedRAMP, and CISA guidance.
• Experience developing executive reports, dashboards, operational metrics, and program management documentation.
• Demonstrated ability to manage multiple priorities, operational teams, and cybersecurity service delivery.
• Excellent communication, leadership, organizational, and stakeholder engagement skills.

Preferred Certifications

• Project Management Professional (PMP)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• GIAC Certified Incident Handler (GCIH)
• Certified Ethical Hacker (CEH)
• ITIL Foundation or higher