SOC Security Manager

SOC Security Manager

+ Role Type: Permanent
+ Location: Gosport or Glasgow (2 days on site, 3 days remote)
+ Salary: £80,000 - £90,000 + 3% flex + £5400
+ Must hold or be eligible for SC Clearance

The challenging and satisfying area of Defence can now offer an experienced SOC Security Manager a fantastic opportunity on their team.

We are looking for you to lead the large SOC Transformation and be responsible for all Security Operations Centre Services and Protective Monitoring System whilst overseeing all SOC Team members. As the SOC Security Manager, you will take overall responsibility for the security analysis, incident classification and incident response actions such as notifications and alerting, as well as monitoring client security infrastructure, identifying and reporting real time attacks and vulnerabilities on the client network.


What you will be doing:

• Monitoring client security infrastructure, identifying and reporting real time attacks and vulnerabilities on the client network
• Identification of incidents, analysis and investigation to determine their severity and the response required
• Ensure that all incidents are correctly reported and documented
• Provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a reoccurrence
• Maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the client network
• Author Protective Monitoring/SOC documentation, processes and procedures and ensure currency
• Manage all SOC Analysts and Engineers - from supervising day to day work through to timesheets/leave requests and HR
• Provide OJT to develop junior members of the SOC team
• Perform security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified
• Escalate and support potential security incidents
• Manage communications of potential security incidents via multiple channels
• Perform assurance of security posture through monitoring security system status
• Create and interpret regular and ad hoc security reports

What you'll bring:

• Previous SOC Lead / Security Management experience
• Previous experience working on a transformation
• Support and training of SOC Team
• SIEM Monitoring, alerting & event analysis
• Network and host IDS monitoring alerts
• IT systems architecture understanding
• Malware types, Vulnerabilities, associated threats and exploits
• Email gateway attacks
• Understanding and appreciation of IT systems forensics
• Tuning/creation of Reports and Trends for the Client
• Incident escalation and detailed activity log/timeline of events & actions

It would be great if you had:

• Degree or equivalent in Computer Science or IT Security
• SPLUNK SME