Security Operations Center, Senior Manager

Site: Mass General Brigham Incorporated

Mass General Brigham relies on a wide range of professionals including doctors nurses business people tech experts researchers and systems analysts to advance our mission. As a not-for-profit we support patient care research teaching and community service striving to provide exceptional care. We believe that high-performing teams drive groundbreaking medical discoveries and invite all applicants to join us and experience what it means to be part of Mass General Brigham.

Job Summary

Summary
This leadership positions works with senior leadership to establish goals and objectives of a large team or multiple teams.

Essential Functions
-Manages the activities of one or more teams of Digital professionals.
-Focuses on achieving the deliverables on-time and within budget.
-Employs service management and/or project management methodologies to deliver high quality work products.
-Attracts retains and develops high quality staff.
-Establishes and maintains a work environment conducive to high performance.
-Addresses the training and professional development needs of the staff.
-Promotes and encourages a high-quality customer service experience for all customers internal and external.
-Collaborates well with other teams and departments to produce results.
-May work with multiple vendors to assure delivery of contracted services and products.
-May engage in negotiations with vendors.
-Manages several medium to high complexity projects and/or services.

The Opportunity

The Security Operations Center (SOC) Senior Manager is a senior cybersecurity professional responsible for the oversight of a 24/7 hybrid SOC team supporting a large healthcare this role the SOC Senior Manager leads internal SOC analysts and coordinates with a Managed Security Service Provider (MSSP) to monitor detect and respond to cybersecurity threats around the clock. This position functions as a bridge between technical security operations and executive leadership ensuring the organizations digital assets stay protected while translating complex security issues into business terms.

As the leader of an essential security function the SOC Senior Manager has both operational and strategic responsibilities. This role requires technical mastery to support incident response as well as deep experience in project management organizational leadership and strategic planning. The SOC Senior Manager ensures that security operations align with the NIST Cybersecurity Framework and comply with healthcare regulations such as HIPAA driving continuous improvements to meet these frameworks. This role reports to the Director of Security Operations and collaborates closely with other cybersecurity and IT leaders to integrate SOC activities with the broader security strategy.

Principal Duties and Responsibilities:
Provide day-to-day operational management of a 24/7 hybrid SOC. Oversee continuous security monitoring and incident response coverage for the enterprise coordinating a team of internal analysts and MSSP resources to ensure threats are promptly detected triaged and addressed.
Lead and develop the SOC team (Analysts Threat Hunters Incident Responders). Actively mentor and coach personnel across skill levels establishing clear career paths and performance expectations conducting regular evaluations and fostering a high-performance culture.
Govern and coordinate a Managed Security Service Provider (MSSP). Serve as the primary point of contact for the MSSP overseeing their service delivery monitoring Service Level Agreements (SLAs) and integrating their activities with internal SOC operations to maintain a seamless 24/7 defense.
Supervise security monitoring detection triage escalation containment and incident investigation. Ensure that SOC processes (from initial alert handling to incident closure) are executed efficiently and in accordance with established playbooks and escalation procedures acting as an escalation point and incident commander during high-severity security incidents.
Oversee and enhance security technologies. Manage and continuously improve the SOC technology stack including platforms like SIEM EDR ticketing SOAR and cloud security controls in Azure AWS and GCP to optimize threat detection and response capabilities.
Ensure alignment with cybersecurity frameworks and healthcare regulations. Maintain SOC policies procedures and controls in alignment with the NIST Cybersecurity Framework and the HIPAA Security Rule using these standards to guide incident response plans and security operations.
Prepare documentation dashboards and executive-level reports. Develop and update comprehensive SOC documentation (procedures playbooks incident reports) and operational dashboards. Provide regular reports and briefings to executives on the organizations security posture incident trends and SOC performance against key objectives.
Identify track and report operational metrics and KPIs. Define key performance indicators (e.g. alert volumes response times mean time to detect/recover) and use them to measure SOC effectiveness. Analyze and report on these metrics through monthly dashboards and presentations driving accountability and continuous improvement.
Collaborate with interdisciplinary teams (IT Privacy Compliance Network Clinical etc.). Work closely with other departments and stakeholders to ensure coordinated security incident response and alignment of security measures with organizational needs. Facilitate communication between the SOC and IT operations clinical engineering privacy and compliance offices and other business units to support a holistic cybersecurity program.
Lead special projects tabletop exercises and improvement initiatives. Plan and execute cybersecurity tabletop exercises and incident response drills to test and refine SOC readiness. Drive special projects and transformation initiatives (e.g. process improvements tool integrations cloud security enhancements) that strengthen the enterprises security posture.
Drive innovation in SOC operations workflows and technology. Champion new ideas and technologies to continuously evolve SOC capabilities for example by implementing automation and orchestration workflows integrating threat intelligence and adopting best practices to handle emerging threats. Ensure the SOC remains agile and forward-looking in the face of a dynamic cyber threat landscape. Define the SOC roadmap and be accountable for delivering strategic results.
Provides technical thought leadership within the cybersecurity community both internally and externally influencing the direction of security practices and innovations.
Use/s the Mass General Brigham values to govern decisions actions and behaviors. These values guide how we get our work done: Patients Affordability Accountability & Service Commitment Decisiveness Innovation & Thoughtful Risk; and how we treat each other: Diversity & Inclusion Integrity & Respect Learning Continuous Improvement & Personal Growth Teamwork & Collaboration.
Other duties and responsibilities as assigned.

• Bachelors or Associates Degree or requisite experience in Information Security Computer Science Computer Engineering or a related field.
• 8 years of relevant experience preferred including at least 2 years in SOC operations leadership or management.
• Hands-on experience with enterprise SOC tools.
• Relevant Certifications preferred including CISSP GCIH GCIA GCFA CEH CCSP HCISPP.
• Strong knowledge of frameworks and standards including NIST Cybersecurity Framework and HIPAA Security Rule.

Skills/Abilities/Competencies:

• Broad and deep technical understanding across cybersecurity domains including threat monitoring detection engineering digital forensics incident response and threat intelligence analysis. Stays current with emerging threats and security technologies.
• Excellent leadership skills with the ability to coach and motivate a diverse security team. Capable of managing team performance and fostering professional growth in a high-paced SOC environment.
• Strong written and verbal communication skills including the ability to distill complex technical information into clear executive-level reports and presentations. Able to serve as a bridge between technical teams and senior leadership conveying security issues in business terms.
• Superior analytical and structured problem-solving abilities. Approaches incidents methodically and can quickly assess contain and remediate security events using a data-driven mindset.
• Ability to work effectively under pressure during high-severity incidents maintaining sound judgment and composure to guide the team through incident containment and recovery.
• Demonstrated ability to collaborate across interdisciplinary teams in a complex healthcare setting. Skilled in building partnerships with IT clinical compliance and other departments to ensure a unified security approach.
• A forward-thinking mindset with a commitment to continuous improvement. Proactively seeks opportunities to enhance SOC processes workflows and technologies driving transformation and innovation in security operations.

Supervisory Responsibilities:

• 8 to 10 full-time employee direct reports
• 12 30 additional contractor reports

Hybrid

399 Revolution Drive

40

Regular

Day (United States of America)

Pay Range

$115398.40 - $167845.60/Annual

Grade

8

At Mass General Brigham we believe in recognizing and rewarding the unique value each team member brings to our organization. Our approach to determining base pay is comprehensive and any offer extended will take into account your skills relevant experience if applicable education certifications and other essential factors. The base pay information provided offers an estimate based on the minimum job qualifications; however it does not encompass all elements contributing to your total compensation addition to competitive base pay we offer comprehensive benefits career advancement opportunities differentials premiums and bonuses as applicable and recognition programs designed to celebrate your contributions and support your professional growth. We invite you to apply and our Talent Acquisition team will provide an overview of your potential compensation and benefits package.

0100 Mass General Brigham Incorporated is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race color religious creed national origin sex age gender identity disability sexual orientation military service genetic information and/or other status protected under law. We will ensure that all individuals with a disability are provided a reasonable accommodation to participate in the job application or interview process to perform essential job functions and to receive other benefits and privileges of employment. To ensure reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973 the Vietnam Veterans Readjustment Act of 1974 and Title I of the Americans with Disabilities Act of 1990 applicants who require accommodation in the job application process may contact Human Resources at .

Mass General Brigham Competency Framework