Georgetown University comprises two unique campuses in the nation's capital. With the Hilltop Campus located in the heart of the historic Georgetown neighborhood, and the Capitol Campus, just minutes from the U.S. Capitol and U.S. Supreme Court, Georgetown University offers rigorous academic programs, a global perspective, and unparalleled opportunities to engage with Washington, D.C. Our community is a close-knit group of remarkable individuals driven by intellectual inquiry, a commitment to social justice, and a shared dedication to making a difference in the world.
Requirements
Job Overview
Security Operations Center (SOC) Manager, University Information Systems/University Information Security Office - Georgetown University
The SOC Manager is a self-starter, a natural problem solver, collaborative, and able to work well with adversity and ambiguity. You should have strong problem-solving skills, excellent communication skills, a deep technical understanding of modern cybersecurity threats, DFIR (digital forensics and incident response), and a validated track record in hands-on approach to maturing defense capabilities in highly targeted environments at scale. Success for the role will be the delivery of a world class threat defense program that is positioned to address, contain, and drive successful resolution to any cybersecurity situation.
Duties include but are not limited to:
Oversee daily operations of the Security Operations Center (SOC), ensuring timely detection, analysis, and response to cybersecurity incidents
Coordinate incident response efforts across teams, managing escalations and ensuring containment, eradication, and recovery procedures are executed effectively
Develop and maintain SOC playbooks, workflows, wikis and escalation protocols to standardize response efforts and improve operational efficiency
Monitor threat intelligence feeds and integrate relevant indicators into detection systems to enhance proactive defense capabilities
Lead the implementation and tuning of security monitoring tools (e.g., SIEM, EDR) to ensure accurate alerting and minimal false positives
Work Interactions
The SOC Manager will report directly to the Director of Security Operations. They will lead a small team of incident responders and coordinate with the university MSSP (managed security services provider) for triage and after-hours/weekend/holiday support. Interaction and coordination with various teams across the university will be required.
Requirements and Qualifications
Minimum 5 years of experience in a SOC or cybersecurity operations role
Preferred certifications: CISSP, GCIA, GCIH, CEH
Strong understanding of incident response methodologies and threat detection techniques
Experience with SIEM platforms (e.g., Splunk, Sentinel), EDR tools, and log analysis
Familiarity with MITRE ATT&CK framework and threat intelligence integration
Ability to lead and mentor SOC analysts in a fast-paced environment
Preferred Requirements and Qualifications
Bachelor's or Master's degree /certificate in IT, IS, Cybersecurity or other related field.
Excellent communication and report writing skills
Experience with vulnerability management and penetration testing tools
Knowledge of regulatory frameworks such as NIST 800-53, ISO 27001, and SOC 2
Experience managing an operational team.
Experience using incident handling methodologies
Deep technical knowledge of computer networking concepts and protocols, network security methodologies, cyber threats and vulnerabilities, authentication, authorization, and access control methods.
Knowledge of operational impacts of cybersecurity lapses.
Experience with cyber defense and vulnerability assessment tools and capabilities with the ability to determine how a security system should work and how changes would impact outcomes.
Ability to apply cybersecurity and privacy principles to meet organizational requirements
Ability to effectively communicate and influence meaningful insights regarding the organization's threat environment in order to improve its risk management posture
Experience with at least one of the major cloud providers: AWS, or GCP.
Ability to provide consultation and guidance to team members and management concerning SOC maturity and gaps in capability.
Makes sound decisions, based on empirical evidence, and in the absence of evidence, able to utilize analytic and diagnostic skills to gather available information from which to make decisions.
Experience breaking a problem down to manageable pieces and implements effective, timely solutions. Is very good at identifying the problem versus the symptom.
Work Mode Designation
This position has been designated as Remote. Please note that work mode designations are regularly reviewed in order to meet the evolving needs of the University. Such review may necessitate a change to a position's mode of work designation. Complete details about Georgetown University's mode of work designations for staff positions can be found on the Department of Human Resources website: https://hr.georgetown.edu/mode-of-work-designation .
Pay Range:
The projected salary or hourly pay range for this position which represents the full range of anticipated compensation is:
$66,783.00 - $126,720.23
Compensation is determined by a number of factors including, but not limited to, the candidate's individual qualifications, experience, education, skills, and certifications, as well as the University's business needs and external factors.
Current Georgetown Employees:
If you currently work at Georgetown University, please exit this website and login to GMS ( gms.georgetown.edu ) using your Net ID and password. Then select the Career worklet on your GMS Home dashboard to view Jobs at Georgetown.
Submission Guidelines:
Please note that in order to be considered an applicant for any position at Georgetown University you must submit a resume for each position of interest for which you believe you are qualified. Documents are not kept on file for future positions.
Need Assistance:
If you are a qualified individual with a disability and need a reasonable accommodation for any part of the application and hiring process, please click here (http://ideaa.georgetown.edu/ada) for more information, or contact the Office of Institutional Diversity, Equity, and Affirmative Action (IDEAA) at 202-687-4798 or ideaa@georgetown.edu.
Need some assistance with the application process? Please call 202-687-2500. For more information about the suite of benefits, professional development and community involvement opportunities that make up Georgetown's commitment to its employees, please visit the Georgetown Works website (https://georgetownworks.georgetown.edu/) .
EEO Statement:
GU is an Equal Opportunity Employer (https://policymanual.hr.georgetown.edu/200-hiring-and-employment/201-equal-employment-opportunity-affirmative-action/) . All qualified applicants are encouraged to apply, and will receive consideration for employment without regard to age, citizenship, color, disability, family responsibilities, gender identity and expression, genetic information, marital status, matriculation, national origin, race, religion, personal appearance, political affiliation, sex, sexual orientation, veteran status, or any other characteristic protected by law (https://georgetown.box.com/s/jkc3kxwrf56e1n2km0jh1vj09fvanw70) .
Benefits:
Georgetown University offers a comprehensive and competitive benefit package that includes medical, dental, vision, disability and life insurance, retirement savings, tuition assistance, work-life balance benefits, employee discounts and an array of voluntary insurance options. You can learn more about benefits and eligibility on the Department of Human Resources website (https://benefits.georgetown.edu/staff/enrolling/) .
