Back to jobs

SOC Manager

$40-60/hrRemoteFreelanceCODING

About the Role

What if your hard-won experience running security operations could directly strengthen how organizations detect, respond to, and recover from threats? We're looking for a seasoned SOC Manager to independently assess the operational readiness of security operations centers — reviewing detection logic, response workflows, playbook quality, and incident lifecycle management to surface what's working and what isn't.

This is a fully remote, flexible contract role built for experienced cybersecurity professionals who thrive on critical analysis and structured evaluation.

  • Type: Hourly Contract
  • Location: Remote
  • Commitment: Flexible, based on project scope

What You'll Do

  • Review detection alerts, triage workflows, and escalation pathways for logic, consistency, and coverage
  • Evaluate the completeness, accuracy, and quality of incident response actions across real or simulated cases
  • Identify gaps in logging depth, detection coverage, and containment logic
  • Validate playbooks for clarity, correctness, and real-world operational feasibility
  • Summarize incident patterns, operational bottlenecks, and systemic weaknesses in structured reports
  • Support recurring assessments of SOC maturity, responsiveness, and overall operational rigor

Who You Are

Must-Have:

  • Hands-on experience in SOC operations, incident response leadership, or cybersecurity operations management
  • Strong understanding of detection engineering, escalation logic, and incident lifecycle management
  • Sharp analytical writing skills — you can translate complex findings into clear, structured documentation
  • A methodical, detail-oriented approach to evaluating security processes

Nice to Have:

  • Familiarity with SIEM platforms, EDR tools, or cloud-native detection systems
  • Experience designing or auditing incident response playbooks
  • Background in SOC maturity frameworks or red/blue team assessments

Why Join Us

  • Work on meaningful security assessments that have a direct impact on organizational resilience
  • Fully remote and asynchronous — work on your own schedule
  • Freelance autonomy with structured, clearly defined work
  • Leverage your operational expertise in a high-value consulting capacity
  • Potential for ongoing work and contract extension as new assessment projects launch