OneMain Financial

Security Operations Center Manager

OneMain Financial$100K — $130K *
Baltimore, MD 21215In-Person
Information Technology
8 - 10 years of experience
1 week ago
Job Overview by Ladders

Qualifications

  • 8-10 years in information security and cybersecurity operations, with progressive experience
  • 7 years in security operations covering all SOC tiers (Tiers 1, 2, and 3)
  • 5 years managing SOC teams, focusing on team leadership and operational oversight
  • Deep technical knowledge of security monitoring tools like SIEM, IDS/IPS, and SOAR
  • Strong grasp of threat intelligence and security frameworks (e.g., NIST, ISO 27001)
  • Proficiency in programming languages for automation, such as Python and PowerShell
  • Bachelor's in Cybersecurity or related field, or equivalent experience, plus two industry-recognized certifications

Responsibilities

  • Lead full incident response activities from detection to post-incident review
  • Direct SOC analysts in detection, investigation, and incident remediation
  • Document incidents accurately and manage escalation workflows and resolutions
  • Implement SOAR workflows to automate security tasks and investigations
  • Optimize operational efficiency, reducing MTTR through automation
  • Create custom detection rules in SIEM based on threat intelligence and findings
  • Report SOC KPIs and updates on security trends to leadership

Benefits

  • Opportunities for professional development and continuous learning
  • Flexible working arrangements and a supportive team culture
  • Participation in advanced cybersecurity training and certifications
  • Access to cutting-edge security technologies and tools
  • Health and wellness programs promoting work-life balance
Full Job Description
Position Overview:

We are seeking an experienced and highly skilled Security Operations Center (SOC) Manager to lead our cybersecurity operations team. The SOC Manager will oversee the full security operations lifecycle, from threat detection and incident response to team development and planning. This role is critical to ensure our organization maintains a robust security posture while managing day-to-day security operations.

Key Responsibilities:
  • Lead end-to-end incident response activities, including detection, containment, eradication, recovery, and post-incident review
  • Direct SOC analysts in threat detection, triage, investigation, and remediation efforts
  • Maintain accurate incident documentation, escalation workflows, ticket management, and timely event resolution
  • Develop and implement SOAR workflows to automate investigations, response actions, and repetitive security tasks
  • Improve operational efficiency and reduce MTTR through process automation and continuous optimization
  • Develop custom SIEM detection rules and signatures based on evolving business needs, threat intelligence, and threat hunting findings
  • Develop, track, and report SOC KPIs, including MTTD, MTTA, MTTR, dwell time, false positives, and incident closure rates
  • Provide leadership with regular updates on security operations, incident trends, and overall security posture
  • Maintain and improve SOC strategies, policies, SOPs, playbooks, and operational processes


Required Qualifications:
  • Deep technical hands-on knowledge of security monitoring tools and technologies including SIEM, IDS/IPS, EDR/XDR, NDR, firewalls, and SOAR platforms
  • Strong understanding of threat intelligence, indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs), and attack methodologies
  • Expert knowledge of security frameworks and methodologies including NIST Cybersecurity Framework, ISO 27001, MITRE ATT&CK, etc.
  • Proficiency in log analysis, network traffic analysis, threat hunting techniques, and behavioral analysis
  • Strong understanding of cloud security principles and cloud-native security tools
  • Fundamental understanding of programming and scripting languages (Python, PowerShell, Bash) for automation, log parsing, and data analysis
  • At least two industry recognized certifications e.g.: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), GCIH (GIAC Certified Incident Handler), GCIA (GIAC Certified Intrusion Analyst), GCFA (GIAC Certified Forensic Analyst), GSOM (GIAC Security Operations Manager), CSOM (Certified Security Operations Manager)
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent professional experience).


Preferred Qualifications:
  • Experience in the financial services industry with deep understanding of financial sector threat landscape, regulatory requirements.


Experience Requirements:
  • Minimum 8-10 years of progressive experience in information security and cybersecurity operations
  • Minimum 7 years of hands-on experience in security operations, with demonstrated expertise across all three SOC tiers (Tier 1 triage, Tier 2 incident response, and Tier 3 threat hunting/advanced analysis)
  • Minimum 5 years of direct SOC management experience, including team leadership, resource planning, and operational oversight
  • Minimum 2 years of hands-on experience with SIEM platforms, including rule creation, testing, tuning, and change management
  • Proven experience managing 24/7 security operations with demonstrable results in incident response effectiveness


About OneMain Financial

OneMain Financial is a consumer finance company that provides personal loans and other financial services. The company was founded in 1912 and is headquartered in Evansville, Indiana. OneMain Financial offers loans for a variety of purposes, including debt consolidation, home improvement, and auto financing. The company operates more than 1,500 branches across the United States. OneMain Financial is a subsidiary of Springleaf Holdings, Inc.
Learn more about OneMain Financial
Size
8,800 employees
Market Cap
$4 billion
Industry
Finance & Insurance
Net Income
$730 million
Founded
1912
5 Year Trend
+5%
Revenue
$4.9 billion
NASDAQ
OMF
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at OneMain Financial

More Information Technology Jobs

Find similar Security Operations Center Manager jobs:

NationwideBaltimore, MD