SOC Lead

SOC Shift Lead Our client has a large Cyber team looking after some powerful and compelling areas within Aero, Defence and Security. Come and join a team who are on the cusp of continued growth and lead from the front, joining in our success. This new position of SOC Shift Lead will be to conduct monitoring and triage of alerts associated with host and network security events for client’s critical infrastructure. You will support the SOC through both delivery of client work and adding skills and ideas to the already diverse team.This role is based on site Hemel Hempstead and is shift work. 2 x days at 6am to 6PM, 2 Nights at 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role.What you'll be doing:

• Monitor, triage, and investigate security incidents on critical client infrastructure.
• In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities.
• Line Management. Maintain, improve and develop team knowledge of SOC tools, security operations and triage.
• Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence.
• Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies.
• Represent the SOC within Partners meetings.
• Ability to work shift from our office in Hemel Hempstead.

What you’ll bring:

• Demonstrable experience in Security Operations Centre.
• People management experience to help develop Analysts and lead careers.
• Demonstrable experience of using Microsoft Sentinel and Splunk.
• Knowledge and experience with Mitre Att&ck Framework.
• Solid grasp of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products.
• Good understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP.

It would be great if you had:

• Static malware analysis and reverse engineering.
• DV Clearance.
• Programming and scripting such as Python, Perl, Bash, PowerShell, C++.CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications.
• Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar.

Overview Position – SOC Shift Lead – Permanent Location – Hemel Hempstead Salary - From £58K to £65K dependant on experience Keywords: SOC, Security Operations Centre, Sentinel, Splunk, Mitre Att&ck, SIEM, QRadar Only apply for this role if you currently hold the specific Government Security Clearance or are eligible for Government Security Clearance.Due to the nature of work undertaken at our client's site, incumbents of these positions are required to meet special nationality rules and therefore these vacancies are only open to sole British Citizens. Applicants who meet this criteria will also be required to undergo security clearance vetting, if not already security cleared to a minimum SC level.Electus Recruitment Solutions provides specialist engineering and technical recruitment solutions to a number of high technology industries. We thank you for your interest in this vacancy. If you don't hear from us within 7 working days please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV/details in the future and we shall assess your suitability at that time.This is a Permanent Role