New 
Security Operations Center, Senior Manager
 Mass General Brigham (Enterprise Services) | |
 United States, Massachusetts, Somerville | |
| 399 Revolution Drive (Show on map) | |
 Dec 25, 2025 | |
|
Summary
This leadership positions works with senior leadership to establish goals and objectives of a large team, or multiple teams. Essential Functions -Manages the activities of one or more teams of Digital professionals. -Focuses on achieving the deliverables on-time and within budget. -Employs service management and/or project management methodologies to deliver high quality work products. -Attracts, retains and develops high quality staff. -Establishes and maintains a work environment conducive to high performance. -Addresses the training and professional development needs of the staff. -Promotes and encourages a high-quality customer service experience for all customers - internal and external. -Collaborates well with other teams and departments to produce results. -May work with multiple vendors to assure delivery of contracted services and products. -May engage in negotiations with vendors. -Manages several medium to high complexity projects and/or services. The Opportunity The Security Operations Center (SOC) Senior Manager is a senior cybersecurity professional responsible for the oversight of a 24/7 hybrid SOC team supporting a large healthcare enterprise. In this role, the SOC Senior Manager leads internal SOC analysts and coordinates with a Managed Security Service Provider (MSSP) to monitor, detect, and respond to cybersecurity threats around the clock. This position functions as a bridge between technical security operations and executive leadership, ensuring the organization's digital assets stay protected while translating complex security issues into business terms. As the leader of an essential security function, the SOC Senior Manager has both operational and strategic responsibilities. This role requires technical mastery to support incident response, as well as deep experience in project management, organizational leadership, and strategic planning. The SOC Senior Manager ensures that security operations align with the NIST Cybersecurity Framework and comply with healthcare regulations such as HIPAA, driving continuous improvements to meet these frameworks. This role reports to the Director of Security Operations and collaborates closely with other cybersecurity and IT leaders to integrate SOC activities with the broader security strategy. Principal Duties and Responsibilities: *Provide day-to-day operational management of a 24/7 hybrid SOC. Oversee continuous security monitoring and incident response coverage for the enterprise, coordinating a team of internal analysts and MSSP resources to ensure threats are promptly detected, triaged, and addressed. *Lead and develop the SOC team (Analysts, Threat Hunters, Incident Responders). Actively mentor and coach personnel across skill levels, establishing clear career paths and performance expectations, conducting regular evaluations, and fostering a high-performance culture. *Govern and coordinate a Managed Security Service Provider (MSSP). Serve as the primary point of contact for the MSSP, overseeing their service delivery, monitoring Service Level Agreements (SLAs), and integrating their activities with internal SOC operations to maintain a seamless 24/7 defense. *Supervise security monitoring, detection, triage, escalation, containment, and incident investigation. Ensure that SOC processes (from initial alert handling to incident closure) are executed efficiently and in accordance with established playbooks and escalation procedures, acting as an escalation point and incident commander during high-severity security incidents. *Oversee and enhance security technologies. Manage and continuously improve the SOC technology stack - including platforms like SIEM, EDR, ticketing, SOAR, and cloud security controls in Azure, AWS, and GCP - to optimize threat detection and response capabilities. *Ensure alignment with cybersecurity frameworks and healthcare regulations. Maintain SOC policies, procedures, and controls in alignment with the NIST Cybersecurity Framework and the HIPAA Security Rule, using these standards to guide incident response plans and security operations. *Prepare documentation, dashboards, and executive-level reports. Develop and update comprehensive SOC documentation (procedures, playbooks, incident reports) and operational dashboards. Provide regular reports and briefings to executives on the organization's security posture, incident trends, and SOC performance against key objectives. *Identify, track, and report operational metrics and KPIs. Define key performance indicators (e.g., alert volumes, response times, mean time to detect/recover) and use them to measure SOC effectiveness. Analyze and report on these metrics through monthly dashboards and presentations, driving accountability and continuous improvement. *Collaborate with interdisciplinary teams (IT, Privacy, Compliance, Network, Clinical, etc.). Work closely with other departments and stakeholders to ensure coordinated security incident response and alignment of security measures with organizational needs. Facilitate communication between the SOC and IT operations, clinical engineering, privacy and compliance offices, and other business units to support a holistic cybersecurity program. *Lead special projects, tabletop exercises, and improvement initiatives. Plan and execute cybersecurity tabletop exercises and incident response drills to test and refine SOC readiness. Drive special projects and transformation initiatives (e.g., process improvements, tool integrations, cloud security enhancements) that strengthen the enterprise's security posture. *Drive innovation in SOC operations, workflows, and technology. Champion new ideas and technologies to continuously evolve SOC capabilities - for example, by implementing automation and orchestration workflows, integrating threat intelligence, and adopting best practices to handle emerging threats. Ensure the SOC remains agile and forward-looking in the face of a dynamic cyber threat landscape. Define the SOC roadmap and be accountable for delivering strategic results. *Provides technical thought leadership within the cybersecurity community, both internally and externally, influencing the direction of security practices and innovations. *Use/s the Mass General Brigham values to govern decisions, actions, and behaviors. These values guide how we get our work done: Patients, Affordability, Accountability & Service Commitment, Decisiveness, Innovation & Thoughtful Risk; and how we treat each other: Diversity & Inclusion, Integrity & Respect, Learning, Continuous Improvement & Personal Growth, Teamwork & Collaboration. *Other duties and responsibilities as assigned.
Skills/Abilities/Competencies:
Supervisory Responsibilities:
Working Model & Additional Details
Mass General Brigham Incorporated is an Equal Opportunity Employer. By embracing diverse skills, perspectives and ideas, we choose to lead. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, national origin, sex, age, gender identity, disability, sexual orientation, military service, genetic information, and/or other status protected under law. We will ensure that all individuals with a disability are provided a reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. | |