Internship Cyber Defender Jobs (NOW HIRING)

.

OVERVIEW:

As the Security Operations Center (SOC) Manager, you'll lead MaineIT's enterprise cybersecurity operations program, overseeing the teams, technologies, and processes responsible for detecting, analyzing, and responding to cyber threats targeting the State of Maine. This is far more than a traditional SOC leadership role. You'll oversee a multi-functional cyber defense operation that includes security monitoring, vulnerability management, endpoint security, threat intelligence, physical security operations, and incident response coordination. Reporting directly to the Deputy Chief Information Security Officer (CISO), this position plays a critical role in protecting the systems and services relied upon by agencies and citizens across Maine state government. This is a unique opportunity to mature and modernize enterprise cyber defense capabilities while leading a highly visible operational security program with statewide impact.

MaineIT is seeking a highly creative Security Operations Center Manager who will represent our core CARE values in all that they do. At MaineIT, our CARE values represent how we:

• PracticeCustomer-focus, ensuring that our customers are heard, and their needs are met.
• Hold ourselves to a high level ofAccountabilityby being transparent with our stakeholders.
• Maintain an effective level ofResponsivenessby providing timely updates in a proactive manner.
• Strive to provideEmpathydriven, people-focused services by applying emotional intelligence skills and behaviors.

Hybrid Work Opportunity - This position has the potential to work from home as much as 90% of the time with management approval.

WHAT YOU'LL DO:

No two days look quite the same in MaineIT's Information Security Office. In general, you can expect to:

• Lead Cyber Defense Operations: Manage and mentor technical leads, analysts, interns, and contracted professionals responsible for enterprise security monitoring and response operations.
• Drive Threat Detection & Monitoring: Oversee SIEM, endpoint detection and response (EDR), intrusion detection/prevention systems, cloud security monitoring, physical security monitoring integrations, and operational alerting capabilities.
• Coordinate Incident Response: Lead cybersecurity incident investigations, containment activities, escalations, recovery efforts, after-action reviews, and post-incident improvement initiatives.
• Oversee Vulnerability Management: Guide enterprise vulnerability identification, prioritization, remediation coordination, and operational risk reduction efforts.
• Advance Threat Intelligence: Support proactive threat analysis, intelligence integration, threat hunting, and detection engineering activities to improve enterprise visibility.
• Strengthen Operational Readiness: Enhance response playbooks, operational processes, automation capabilities, 24x7x365 escalation readiness, and cyber resilience initiatives across the environment.
• Collaborate Across Government: Partner with infrastructure teams, application teams, agency leadership, vendors, and business stakeholders to align security operations with operational needs and serve as a key operational liaison during cybersecurity incidents by communicating risks, impacts, response actions, and operational updates.
• Develop Operational Metrics: Define, track, and report SOC KPIs, KRIs, dashboards, executive reporting, situational awareness, and operational insights that help leadership make informed cybersecurity decisions.
• Support Workforce Development: Foster analyst growth, technical mentoring, operational maturity, and continuous learning throughout the security operations program.

WHY THIS ROLE STANDS OUT:

As a cybersecurity professional you have a lot of options when it comes to your career. We get it. Here's what makes this role stand out:

• Strategic Influence: Help shape the future direction of cyber defense operations for Maine state government.
• Mission-Driven Impact: Help protect critical public services and sensitive information that directly affect the lives of Maine citizens.
• Enterprise-Scale Responsibility: Defend one of the largest and most complex IT environments in the State of Maine.
• Operational Leadership: Lead multiple cybersecurity operational functions including SOC monitoring, threat intelligence, vulnerability management, endpoint security, physical security operations, and incident response coordination.
• Meaningful Technical Challenges: Respond to real-world cyber threats while continuously improving operational capabilities and resilience.
• Professional Growth: Work with evolving technologies, modern detection platforms, and emerging cybersecurity threats in a fast-paced environment.
• Supportive Culture: Collaborate with talented, mission-focused professionals committed to innovation, public service, and operational excellence.

WHY YOU'LL LOVE WORKING HERE:

If you are seeking a culture that supports growth, fosters success, and allows you to play a central role in defending critical State systems and services, then MaineIT is where you need to be. Within MaineIT's Information Security Office, team members can expect:

• One of the most generous hybrid work opportunities within Maine state government.
• A collaborative, fast-paced environment that values innovation and continuous improvement.
• Opportunities to lead meaningful cybersecurity initiatives with statewide impact.
• Support for career development, training, certifications, and advancement.
• Exposure to a broad range of cybersecurity disciplines and technologies.
• Competitive compensation, comprehensive benefits, and generous time off.

MINIMUM QUALIFICATIONS:

• Bachelor's degree in computer science, information technology, cybersecurity, or a related field, and
• A minimum of 5 years of experience in cybersecurity, information security, or security operations roles, with at least 3 years in a managerial or leadership capacity overseeing technical cybersecurity teams.

Preference will be given to those candidates with:

• Certifications such as CISSP, GIAC, GCIA, GCIH, CISM, CEH, or similar credentials.
• Demonstrated experience leading security operations, incident response, threat detection, or cyber defense programs in an enterprise environment.
• Strong understanding of cybersecurity frameworks and standards including the National Institute of Standards and Technology (NIST) SP 800 series guidance.
• Experience working with SIEM platforms, endpoint security technologies, intrusion detection/prevention systems, vulnerability management platforms, cloud security monitoring capabilities, physical security operations capabilities, and enterprise platforms such as Microsoft Defender, Trellix, Splunk, Microsoft Sentinel, Rapid7, AppScan, or comparable technologies.
• Experience coordinating cybersecurity incidents, operational escalations, physical security-related security operations escalations, and cross-functional response efforts.
• Experience in cloud security operations, detection engineering, threat hunting, automation, public-sector cybersecurity environments, or physical security operations within an enterprise security operations program.

Preferred Competencies:

• Capable: Strong in cybersecurity operations, incident response, and enterprise threat detection.
• Receptive: Builds trusted partnerships across technical teams, agencies, and business stakeholders.
• Adept: Confident leading operational teams and managing high-pressure cybersecurity incidents.
• Versatile: Balances operational priorities, technical depth, and strategic objectives in a fast-moving environment.
• Curious: Continuously adapts to emerging threats, technologies, and evolving cybersecurity practices.
• Collaborative: Encourages teamwork, mentorship, and operational excellence across diverse cybersecurity functions.
• Operationally Ready: Understands the expectations of 24x7x365 monitoring, escalation, incident communication, after-action improvement, and integration of cyber and physical security operations.