Associate Manager, Security Operations Center The Associate Manager, Security Operations Center is a Cyber Security, player/coach managerial position. This role will have a strong focus on facilitating Security incident detection and response, systems administration and networking. They will work closely with the Sr. Security Operations Center Manager to ensure all areas of the Security Operations Center run efficiently and effectively. The Associate SOC Manager is responsible for the day-to-day SOC operations and the management and oversight of primarily Tier I SOC Analysts. The Associate SOC Manager will be required to assist with emergency "call-ins" to assist in emergencies and/or serve as an SOC Analyst as needed and when required. The SOC is responsible for providing 24x7x365 coverage for continuous investigation of security event feeds and the appropriate triage and escalation in case of an identified security incident. The SOC is the primary contact for any suspected security incident and works together with the Technical Teams and/or the Incident Response team on resolving incidents to remediate threats across Comerica assets. Position Responsibilities: SOC Management and Oversight * Identify and coordinate the SOC staffing levels for shifts, ticket loads and skill levels. * Confirm shift handovers are completed and documented appropriately. * Audit disposition results to provide guidance and improvement in SOC Analysts' investigative skills and enhance their understanding of how to properly leverage the tools at their disposal to accurately remediate security incidents. * Participate in and/or lead SOC projects and continuous improvement opportunities, both internally and externally including documenting, coordinating, and driving these projects to completion. * Conduct regular training sessions, knowledge-sharing meetings, and workshops to develop SOC Analysts' technical skills and enhance their understanding of security operations. * Confirm completion of tuning requests to provide feedback to the cyber engineering team(s) and improve fidelity of implemented use cases and alerts. * Evaluate, tune, integrate, and optimize existing toolsets to meet monitoring and intelligence sharing requirements. SOC Metrics and Reporting * Generate and publish SOC metrics for staffing and workload levels to measure the effectiveness and efficiency of SOC operations. * Publish SOC investigation activities, Severities and statuses for the Cyber Defense Operations Senior Leadership. * Develop and enhance process and technologies impacting the SOC and the broader Cyber Defense Operations function. * Provide guidance and process improvements to increase productivity and accuracy in incident response. * Assist in developing and implementing incident response procedures, and automated playbooks in conjunction with the Sr SOC Manager. * Handles sensitive information in accordance with the Corporate Information Protection Policy. Leadership * Serve as team leader and mentor, defining and driving goals and performance for Tier 1 SOC analysts. * Manage and develop team cultivating a spirit of one team with shared goals and objectives. * Select, motivate and retain high performing talent. * Provide on-going feedback to maximize overall performance. * Other duties as assigned. Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled