Role: SOC Operations Technical Lead
Remote – Anywhere in the UK | SC Clearable
Up to £70,000 + Car Allowance + Excellent Benefits
We’re looking for an experienced and hands-on SOC Operations Technical Lead to join a high-performing cyber security function delivering 24/7 SOC services across a diverse enterprise and multi-client environment.
This is not a traditional management role. You’ll be the senior technical authority within the SOC – leading from the front, mentoring analysts, driving operational maturity, and remaining deeply involved in threat detection, incident response, threat hunting, and SOC engineering initiatives.
If you thrive in fast-paced security operations environments and enjoy combining leadership with deep technical expertise, this is an outstanding opportunity to shape and influence a growing SOC capability.
What You’ll Be Doing
Lead and mentor a team of SOC Analysts operating across a 24/7/365 environment
Oversee shift coordination, operational coverage, escalations, and incident management
Act as the senior technical escalation point for complex cyber incidents and investigations
Drive continuous improvement across SOC processes, detection engineering, and automation
Lead advanced threat hunting and proactive detection initiatives
Evaluate, implement, and optimise security tooling across client environments
Enhance SOC efficiency through automation, SOAR workflows, and operational tuning
Collaborate with clients and internal stakeholders to strengthen cyber resilience
Support the strategic evolution of SOC capabilities, services, and operational maturity
Technical Environment
You’ll work extensively across modern security technologies including:
SIEM Platforms
Microsoft Sentinel
CrowdStrike
EDR/XDR Solutions
CrowdStrike Falcon
Microsoft Defender
Carbon Black
Additional Technologies
SOAR platforms
Threat Intelligence platforms
Network Security & Monitoring tools
Cloud Security technologies
What We’re Looking For
7+ years’ experience within Security Operations/Cyber Defence
Proven experience in a Senior SOC Analyst, Lead Analyst, or SOC Technical Lead role
Strong hands-on expertise across SIEM, EDR/XDR, detection engineering, and incident response
Demonstrable experience in advanced threat hunting and security investigations
Strong understanding of SOC automation and operational optimisation
Experience working within MSSP, consulting, or multi-client environments is highly desirable
Ability to lead technical teams while remaining operationally hands-on
Preferred Certifications
CISSP
GIAC Certifications (GCIH/GCIA/GREM)
Microsoft SC-200/SC-100
Equivalent industry-recognised certifications
Nice to Have
Cloud security operations experience (Azure/AWS/M365)
Familiarity with ITIL, NIST, ISO27001, or similar frameworks
Experience supporting enterprise or regulated environments