Senior SOC Operations Lead – Hands-On 24/7 Threat Detection

Up to £70,000 + Car Allowance + Excellent Benefits

We’re looking for an experienced and hands‑on SOC Operations Technical Lead to join a high‑performing cyber security function delivering 24/7 SOC services across a diverse enterprise and multi‑client environment.

This is not a traditional management role. You’ll be the senior technical authority within the SOC — leading from the front, mentoring analysts, driving operational maturity, and remaining deeply involved in threat detection, incident response, threat hunting, and SOC engineering initiatives.

If you thrive in fast‑paced security operations environments and enjoy combining leadership with deep technical expertise, this is an outstanding opportunity to shape and influence a growing SOC capability.

What You’ll Be Doing

• Lead and mentor a team of SOC Analysts operating across a 24/7/365 environment
• Oversee shift coordination, operational coverage, escalations, and incident management
• Act as the senior technical escalation point for complex cyber incidents and investigations
• Drive continuous improvement across SOC processes, detection engineering, and automation
• Lead advanced threat hunting and proactive detection initiatives
• Evaluate, implement, and optimise security tooling across client environments
• Enhance SOC efficiency through automation, SOAR workflows, and operational tuning
• Collaborate with clients and internal stakeholders to strengthen cyber resilience
• Support the strategic evolution of SOC capabilities, services, and operational maturity

You’ll work extensively across modern security technologies including:

• EDR/XDR solutions
• Additional Technologies
• Threat Intelligence platforms
• Network Security & Monitoring tools
• Cloud Security technologies

What We’re Looking For

• 7+ years’ experience within Security Operations / Cyber Defence
• Proven experience in a Senior SOC Analyst, Lead Analyst, or SOC Technical Lead role
• Strong hands‑on expertise across SIEM, EDR/XDR, detection engineering, and incident response
• Demonstrable experience in advanced threat hunting and security investigations
• Strong understanding of SOC automation and operational optimisation
• Experience working within MSSP, consulting, or multi‑client environments is highly desirable
• Ability to lead technical teams while remaining operationally hands‑on
• Equivalent industry‑recognised certifications

Nice to Have

• Cloud security operations experience (Azure / AWS / M365)
• Familiarity with ITIL, NIST, ISO27001, or similar frameworks
• Experience supporting enterprise or regulated environments

#J-18808-Ljbffr…