State of Oregon · 11 hours ago
SOC Manager (IT Cyber Security Manager 2)
Salem | DAS | State Data Center
Full-time
Hybrid
Senior Level
$8,504/mo - $13,148/mo
6+ years expThe State of Oregon is seeking a SOC Manager (IT Cyber Security Manager 2) to lead the Security Operations Center and ensure continuous monitoring, detection, analysis, and response to cyber threats. This role involves guiding a team of SOC analysts, maintaining operational readiness, and coordinating incident response efforts across various state agencies to protect critical public services and data.
GovernmentRecyclingSustainabilityWaste Management
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Lead the day-to-day operations of the State of Oregon’s Security Operations Center
Ensure continuous monitoring, detection, analysis, and response to threats
Guide and grow a team of SOC analysts
Maintain 24x7 readiness and ensure tools, workflows, playbooks, and escalation paths are documented and tested
Translate the SOC Director’s vision into operational excellence
Lead during high-impact incidents, ensuring effective incident management
Coordinate response efforts with Network, Endpoint, Cloud, Vulnerability, and agency partners
Evaluate and improve SOC processes, playbooks, tooling, and staffing models
Qualification
Required
Six years of supervision, management, or progressively related experience; OR
Three years of related experience and a bachelor's degree in a related field
Related qualifying information systems experience in: Microsoft Defender for Endpoint, Identity, Office 365, and Cloud Apps, Attack surface reduction (ASR), device timeline, evidence & response actions, Live response sessions and EDR forensics
Qualifying Bachelor degree in Information Technology, Computer Science, or closely related field
A strong foundation in cybersecurity operations, with the ability to understand, oversee, and guide threat detection, incident response, vulnerability management, and security monitoring across on-premises, cloud, and hybrid environments
Operational fluency with modern SOC technologies and workflows, including SIEM, EDR/XDR, log management, alerting, case management, and investigation platforms
The mindset of a cyber operations leader, able to direct investigations, validate analyst conclusions, prioritize response actions, and ensure incidents are managed effectively from triage through recovery
A deep understanding of how enterprise identity, endpoints, networks, cloud services, and security controls interconnect, and how attackers move across them, utilizing the MITRE Att&ck Methods
Proven ability to build, mentor, and sustain high-performing SOC teams, fostering trust, accountability, resilience, and calm leadership in high-pressure, 24x7 environments
The judgment to balance risk, impact, and operational tempo, ensuring the right resources are focused on the most critical threats and that staff are supported and not burned out
The ability to evaluate and improve SOC processes, playbooks, tooling, and staffing models, turning gaps and lessons learned into practical operational improvements
Strong communication and leadership presence, with the ability to translate technical realities into clear guidance for executives, agency partners, and incident commanders
Experience coordinating complex incident response efforts across multiple teams, agencies, and external partners, bringing clarity, structure, and confidence during major events
Extensive experience (typically 7+ years in cybersecurity, including leadership or senior operational roles within a SOC, IR, or security operations environment)
Familiarity with security frameworks and best practices (NIST CSF, incident response lifecycle, MITRE ATT&CK) and how to apply them at an operational and programmatic level
Preferred
CISSP: (Certified Information Systems Security Professional)
SC-200: Microsoft Security Operations Analyst
SC-100: Cybersecurity Architect
AZ-500: Azure Security Engineer
CompTIA CySA+ or Security+
GIAC (GCIA, GCIH, GMON) for advanced threat hunting
Benefits
Comprehensive Health Coverage: Low-cost medical, vision, and dental plans for you and your family. Additional benefits include life insurance, short- and long-term disability, deferred compensation savings plans, and flexible spending accounts for health and childcare. Optional benefits including life insurance, disability, FSA, and more
Generous Paid Time Off: 11 holidays, 3 personal business days, monthly sick leave and vacation leave that increases with years of service.
Career Development: Opportunities for professional growth and advancement.
Get There - Oregon’s easy-to-use carpool matching tool and trip planner.
Public Service Loan Forgiveness: You may qualify for the PSLF program.
Hybrid Work Opportunity: This position supports a hybrid work schedule. You can expect to work in the office 1 day per week, with work arrangements periodically reviewed to ensure business needs are met.
Company
State of Oregon
Official LinkedIn page for the state of Oregon. Oregon is a state in the Pacific Northwest region of the United States.
10001+ employees
Funding
Current Stage
Late StageTotal Funding
$0.5MKey Investors
U.S. Environmental Protection Agency
2023-10-23Grant· $0.5M
Leadership Team
William Wise
Chief Executive Officer
Kate Nass
Chief Financial Officer
Recent News
2025-05-04
Company data provided by crunchbase