SOC Operations Manager The Opportunity: We are seeking a SOC Operations Manager to lead day-to-day Security Operations Center (SOC) activities for 24x7 security monitoring, detection, response, and escalation functions. This role is responsible for managing SOC personnel, including Tier 1, Tier 2, and Tier 3 analysts, ensuring continuous operational readiness, process maturity, and service delivery excellence across all customer enterprise environments, including on-premises, hybrid, zero trust, and cloud environments. You will be responsible for workforce management, shift scheduling, analyst performance, incident response coordination, and operational reporting. The SOC Operations Manager acts as the designated point of contact for SOC operations, customer engagement, service delivery issues, and major incident escalations. The role requires strong leadership, operational management expertise, and a thorough understanding of modern security operations practices. Develop and maintain 24x7 staffing plans, shift schedules, on-call rotations, and surge support capabilities to ensure continuous monitoring and response coverage. The role will oversee Tier 1-3 analyst activities, manage incident handling processes, ensure adherence to SLAs and operational metrics, and drive continuous improvement initiatives across SOC operations. The SOC Operations Manager will coordinate with Threat Intelligence, Threat Hunting, Engineering, Vulnerability Management, and Incident Response teams to ensure effective detection, investigation, and remediation of cybersecurity threats. You Have: 30+ years of experience in cybersecurity 5+ years of experience supporting Security Operations Centers, Incident Response, or Cyber Defense Operations Experience managing SOC operations, including workforce planning, shift management, and analyst supervision Experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, or security monitoring technologies Knowledge of security monitoring, incident response, threat detection, escalation procedures, and cyber defense operations Ability to coordinate and lead response activities during major cybersecurity incidents Top Secret clearance Bachelor's degree Nice If You Have: Experience developing SOC standard operating procedures (SOPs), playbooks, runbooks, and operational workflows Experience with ServiceNow, Jira, or similar ticketing and workflow management systems Experience managing analyst training programs, workforce development initiatives, and career progression plans Ability to analyze operational trends and implement process improvements to enhance SOC effectiveness and efficiency Ability to brief technical teams, executives, and government stakeholders Possession of excellent written and verbal communication skills CISSP, CISM, GSOM, GCIH, GCIA, GCED, Security+, or equivalent certification Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required. Compensation Salary at Booz Allen is determined by various factors, including but not limited to location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $99,000.00 to $225,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen's total compensation package for employees. This posting will close within 90 days from the Posting Date. Work Model Our people-first culture prioritizes the benefits of collaboration, whether it occurs in person or virtually. To support engagement and effective communication, employees working virtually are generally expected to have their cameras on during meetings. Remote: If this position is listed as remote, there may still be occasions when you are required to work in person at a Booz Allen or customer facility. Hybrid: If this position is listed as hybrid, you will be expected to work from a Booz Allen facility frequently, in alignment with leadership expectations and the needs of the role. You may also be required to work from or visit a customer facility. Onsite: If this position is listed as onsite, work will primarily be performed at a Booz Allen office or customer facility, where employees will collaborate directly with colleagues and customers as required by the role.