Security Operations Center; SOC Manager

June 18, 2026
$150000 - $200000 / year

Job Description

Company: ERT, Inc.

Location: Colorado Springs, US

Position: Security Operations Center (SOC) Manager

Security Operations Center (SOC) Manager

:

Type:
Full Time W/Benefits Ret Match

Location:

Colorado Springs, CO

Security Clearance: TS/SCI
Overview

Entarian is seeking a highly capable and mission‑focused Security Operations Center (SOC) Manager to lead the integration, maturation, and day‑to‑day execution of cybersecurity operations within the meshONE‑T program.

This role is responsible for transforming cybersecurity from distributed activities into a unified, intelligence‑driven operational capability integrated with network operations, engineering, and compliance. The SOC Manager will drive the stand‑up and evolution of the SOC function—establishing structure, improving coordination, and enabling a proactive, mission‑aligned defense posture.

This position operates in a matrixed environment, exercising operational direction across multiple functional teams while formal organizational alignment continues to evolve. The role is expected to grow into full leadership of cybersecurity functions as the program matures toward a next‑generation Mission‑Network Operations and Security Center (M‑NOSC).
Job Overview
• Lead the integration and execution of cybersecurity operations across the meshONE‑T program.
• Establish a structured, scalable SOC capability from currently distributed functions.
• Drive unity of effort across NOC, engineering, and accreditation teams for coordinated operations and response.
• Implement standard processes, playbooks, and escalation models to enable consistent execution.
• Shift cybersecurity posture from reactive to proactive and intelligence‑driven.
• Introduce automation, analytics, and modern tooling to improve detection and response.
• Serve as a key operational leader in the evolution toward an M‑NOSC end‑state.
Job Responsibilities SOC Operations & Capability Development
• Assess current cybersecurity tools, workflows, and operational gaps.
• Stand up and mature SOC functions including monitoring, detection, response, and reporting.
• Develop and implement incident response playbooks and operational runbooks.
• Establish structured escalation, coordination, and communication models.
• Drive consistency across shifts, teams, and mission partners.
Operational Leadership in a Matrixed Environment
• Provide operational direction and tasking across cybersecurity, NOC, and engineering teams.
• Synchronize activities across organizations that do not fall under direct reporting authority.
• Serve as senior escalation point for cybersecurity incidents.
• Build alignment and accountability across stakeholders to ensure mission success.
Governance, Compliance & Control Integration
• Operationalize cybersecurity practices aligned with NIST, RMF, and Zero Trust principles.
• Transition compliance from periodic activity to continuous operational integration.
• Establish accountability for control implementation and evidence collection.
• Support audit readiness and mission assurance objectives.
Modernization & Technology Integration
• Lead integration of SIEM, SOAR, EDR, and observability platforms into a cohesive SOC ecosystem.
• Drive automation and orchestration to improve response time and reduce manual effort.
• Introduce threat intelligence and analytics to enhance detection and situational awareness.
Threat‑Informed Defense
• Establish threat intelligence and threat hunting capabilities.
• Correlate threat activity with operational and mission impact.
• Continuously refine detection logic and response strategies.
Mission Integration & Collaboration
• Partner with meshONE‑T leadership, network operations, engineering teams, and mission stakeholders.
• Ensure cybersecurity activities are aligned with mission priorities and operational objectives.
• Strengthen cross‑team communication and shared situational awareness.
Organizational Growth & Future State Development
• Build the foundation for a scalable cybersecurity operating model.
• Mentor and influence personnel across teams to improve cybersecurity capability.
• Contribute to the long‑term transition toward a fully integrated M‑NOSC.
• Prepare the organization for future centralized cybersecurity leadership and structure.
• Develop training and exercises to improve tactics, techniques and procedures.
Position Details
• Job Type:…

Source: Learn4Good