SOC Shift Lead

Position Available: SOC Shift Lead

Location: Hertfordshire (fully on-site, 24/7 SOC shifts, including nights and some weekends)

Salary: Up to £70,000 DOE + Very good benefits package

Experience needed: Proven background in Cyber Security, with experience leading teams within a Security Operations Centre (SOC) environment. Strong technical knowledge across network security, infrastructure, and operating systems.

About the role:

We are seeking an experienced SOC Shift Leader to join a defence-grade Cyber Security Operations Centre. This is a hands-on, senior operational role where you will provide real-time oversight, quality assurance, and mentoring to Tier 1 and Tier 2 analysts across three rotating shifts.

You'll act as the first point of escalation during your shift, support analysts with complex cases, and drive continuous improvement in SOC processes, playbooks, and detection standards. This role blends technical expertise with leadership responsibilities, delivering operational excellence in a 24/7, mission-critical environment.

What you'll be doing:

  • Lead your SOC shift, ensuring seamless handovers and consistent quality across analysts
  • Mentor and coach Tier 1 and Tier 2 analysts, building capability and fostering a high-performing team culture
  • Perform hands-on alert triage, threat detection, and incident response in line with SOC standards
  • Serve as the first point of escalation, coordinating with incident response, threat intelligence, and SOC management.
  • Identify process or workflow gaps and contribute to continuous improvement initiatives.
  • Enforce operational standards and ensure accurate documentation and reporting across your shift

What we need from you:

  • Proven career background in Cyber Security, ideally within a SOC environment
  • Hands-on experience in network security, infrastructure, operating systems, and threat detection
  • Experience in mentoring, peer coaching, or QA within a SOC
  • Strong written and verbal communication skills, including incident escalation and reporting
  • Solid understanding of the OSI reference model and common network protocols (DNS, SSL, SMTP, FTP/S, LDAP/S)
  • Experience with SIEM platforms and/or network packet capture tools
  • Experience in highly regulated or complex environments is highly desirable, e.g., defence, aerospace, or critical national infrastructure
  • Willingness to work fully on-site within a 24/7 rota, including nights and weekends

If you would like to know more details about the position or want to register your interest, hit apply below. We'd love to hear from you!

Apply Now
Apply Now

Job Details

Company
Henderson Scott
Location
Chelmsford, Essex, UK
Employment Type
Full-time
Posted