Candidates: Create an Account or Sign In
Security Operations (SOC) Team Lead
Remote, UK
37.5 per week, 24/7 coverage in an 8-hour rotating shift pattern
Up to £40,000
Our client, a Microsoft Gold Partner and security solutions company, specializes in providing outsourced security event monitoring and incident response services to a diverse range of clients using a Microsoft-focused technology stack. They are looking for a skilled SOC Team Lead to join their growing team, leading efforts to support both internal and external customers with critical security services.
This role is ideal for candidates with experience in support, deployment, or security operations who are ready to take the next step in their career within a Microsoft-centric security environment. The company is committed to employee development, providing extensive support and resources to achieve Microsoft certifications, including Security Operations Analyst and Security Administrator Associate credentials.
Key Responsibilities
* Lead and mentor a team of SOC Analysts (2/3), fostering a collaborative environment that promotes skill development and knowledge sharing.
* Oversee the receipt, categorization, and response to initial events, incidents, and requests from customers.
* Conduct initial triage, ensuring timely escalation or assignment of incidents as necessary.
* Lead investigations into event alerts and work with customers to confirm appropriate resolutions.
* Coordinate and ensure coverage within a structured 24/7 rotating shift pattern.
Essential Experience
* Minimum of 3 years of commercial experience with the Microsoft 365 suite, Azure, Intune, and Defender.
* Previous experience in a SOC or security team, with a focus on leadership responsibilities.
* Strong understanding of Information Security principles.
* Excellent written and verbal communication skills.
* Proficiency in installing security software and applications.
* Relevant Microsoft certifications, such as SC-200.
* Familiarity with Security Incident and Event Management (SIEM) tools, such as Azure Sentinel.
* Experience with Endpoint Detection and Response (EDR) tools.
If you possess the necessary skills and experience, we encourage you to apply. Interviews will take place during the week of November 4, 2024