SOC Lead

Job title: SOC Lead

Location: Gosport (Hybrid working 2 days per week on site)

Salary: £70k

Security Clearance at SC level is required for this role

I am recruiting a SOC lead for a client of mine who are an IT systems integrator operating within the UK defence sector. You will lead the large SOC Transformation and be responsible for all Security Operations Centre Services and Protective Monitoring System whilst overseeing all SOC Team members.

What you will be doing:

  • Monitoring client security infrastructure, identifying and reporting real time attacks and vulnerabilities on the client network
  • Identification of incidents, analysis and investigation to determine their severity and the response required
  • Ensure that all incidents are correctly reported and documented
  • Provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a reoccurrence
  • Maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the client network
  • Author Protective Monitoring/SOC documentation, processes and procedures and ensure currency
  • Manage all SOC Analysts and Engineers - from supervising day to day work through to timesheets/leave requests and HR
  • Provide OJT to develop junior members of the SOC team
  • Perform security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified
  • Escalate and support potential security incidents
  • Manage communications of potential security incidents via multiple channels
  • Perform assurance of security posture through monitoring security system status
  • Create and interpret regular and ad hoc security reports

What you'll bring:

  • Previous SOC Lead Experience
  • Previous experience working on a transformation
  • Support and training of SOC Team
  • SIEM Monitoring, alerting & event analysis
  • Network and host IDS monitoring alerts
  • IT systems architecture understanding
  • Malware types, Vulnerabilities, associated threats and exploits
  • Email gateway attacks
  • Understanding and appreciation of IT systems forensics
  • Tuning/creation of Reports and Trends for the Client
  • Incident escalation and detailed activity log/timeline of events & actions

If you are interested in this role or wish to apply please feel free to reply to this advert or call me on 0737 821029 or 07766 512829