Description
SOC Lead
6 months
Remote, then London
Inside IR35
Security Clearance: BPSS/DBS (SC clearance would be an advantage)
Primary Role
SOC Team Lead undertakes a broad range of information and IT Security activities. The role has wide ranging responsibilities for Technical IT security covering business as usual activities and projects and leads/develops a team of Security analysts/specialists providing service.
The SOC Lead remains responsible for security monitoring service and provides Level 2 and 3 security incident response, threat assessment and vulnerability management across the estate providing both upward and downward communications. Additionally, the role takes ownership of relevant 3rd party suppliers and provides continuous ownership of security risks associated with the government department.
Primary responsibilities -
- Provide operational management, continuous improvement and direction of the SOC
- Lead multi-functional security initiatives across the department and build relationships with leadership to influence change and drive constancy with configuration management security standards.
- Ensure the team stays up to date with current security vulnerabilities, attacks, and countermeasures
- Create and maintain SOC processes, Standard Operating Procedures (SOPs) and playbook documentation with a goal of automating repeatable tasks within the team for optimal and efficient service delivery
- Ensure Service Level Agreement (SLA) achievement for all customers
- Define & own Security intelligence, vulnerability & Incident management framework process (alongside TI)
- Work directly with other SOC, IT Support & development team members on security incident containment and mitigation activities
- Provide direct communication to customers, peers, team and managers regarding security intelligence, incident and change management activities
- Preparing and participating in Monthly/Quarterly governance forums on Risk & performance
- Obtain/maintain technical/professional certifications applicable to position or as requested by management
Typical Key Skills
- Associate degree or above or equivalent technical degree and or required years of industry experience
- Multiyear experience working in a MSSP, NOC or SOC
- Demonstrates broad knowledge of cybersecurity technologies, trends and strategy.
- Strong analytical skills to define risk, identify potential threats, and develop action/mitigation plan.
- Strong interpersonal skills, ability to mentor/train staff and bring awareness to current and emerging threats.
- 5+ years of experience in the Information Technology (IT) field with a focus in security
- Possession of Industry Certifications (CISSP, CISA, CISM, ITIL, CCNA, CCNP, CCIE)