Soc Shift Lead

Hemel Hempstead
5 days ago
Create job alert

Are you ready to take your SOC expertise to the next level? We are seeking a dynamic and highly capable SOC Shift Lead to support and secure critical infrastructure within the exciting Aerospace, Defence, and Security sector.

This is an exceptional opportunity to lead a team of talented analysts, manage incident triage, and drive operational excellence in a mission-critical environment.

It would be highly desirable if you have SC clearance and also be eligible and be prepared to be put through the process for DV Clearance

This role offers a unique shift-based schedule: 2 days (6am–6pm), 2 nights (6pm–6am), followed by 4 days off—providing an excellent work-life balance.

To be considered for this role you will need to have

Proven experience in a Security Operations Centre (SOC) environment (SOC Level 2)
Previous people management or line management experience
Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk
Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis
In-depth understanding of:
Client-server applications and multi-tier web environments
Relational databases, firewalls, VPNs, enterprise AntiVirus solutions
Networking principles (e.g. TCP/IP, WAN, LAN, SMTP, HTTP, FTP, POP, LDAP)
It would also be desirable if you were to have

Experience in static malware analysis and reverse engineering
Any scripting or programming with Python, Perl, Bash, PowerShell, or C++
Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1
Familiarity with additional SIEM technologies, especially QRadar
The successful SOC Shift Lead, you will ensure the seamless operation and continual enhancement of SOC processes and personnel. This pivotal role involves safeguarding client systems while guiding your team through sophisticated cyber defence challenges.

The Soc Shift Leader would be tasked with

Monitoring, triaging, and investigating alerts across host and network security systems
Performing deep analysis of traffic, logs, and system events to identify threats and vulnerabilities
Providing line management to SOC Analysts—developing their skills and supporting career progression
Enhancing team knowledge across SOC tooling, detection methodologies, and threat triage
Analysing and optimising detection rules and use cases based on Mitre Att&ck
Maintaining detailed and up-to-date incident documentation, findings, and mitigation strategies
Acting as a representative of the SOC in key meetings and internal stakeholder engagements
Working shifts from the on-site SOC in Hemel Hempstead
You will be joining an organisation that is at the forefront of delivering cutting-edge digital solutions to Central Government clients and you would be contributing meaningfully to the UK’s most complex safety- and security-critical environments.

On offer is a great salary with benefits that include 25 days annual leave, health cash plan, life assurance, pension scheme, and a generous flexible benefits fund

Related Jobs

View all jobs

Security Operations Centre Lead

Cyber Security Engineer

Senior Platform Engineer

Incident Manager

SC Cleared Tier 2 Cyber Security Analyst - 24/7 shift allowance

SOC Analyst

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Negotiating Your Cybersecurity Job Offer: Equity, Bonuses & Perks Explained

How to Secure Compensation That Reflects Your Value in the UK’s High-Stakes Cybersecurity Sector Introduction As cyber threats grow more sophisticated and frequent, cybersecurity professionals have never been more in demand. From thwarting ransomware attacks to architecting secure cloud infrastructures, mid‑senior cybersecurity experts play a critical role in safeguarding a company’s data and reputation. Thanks to this growing reliance on cybersecurity, employers in the UK are going above and beyond simple salary offers to attract the top echelon of talent. Although base salary remains a key component of any job offer, the broader package—encompassing equity, bonuses, and perks—can often surpass what you’d gain from a small bump in monthly pay. For cybersecurity specialists working in areas such as threat intelligence, incident response, penetration testing, or compliance, the complexity and risk mitigation you bring to the table is massive. Knowing how to negotiate the entire package ensures you are duly rewarded for keeping an organisation’s data, assets, and operations safe. In this guide, we’ll delve into every aspect of negotiating a cybersecurity job offer. Whether you’re pivoting to a mid‑senior role or cementing your expertise at an established security consultancy, understanding the full range of compensation elements will help you secure an offer that acknowledges the criticality of what you do. Let’s explore equity options, performance bonuses, and the perks that matter most, so you can come out of your next job negotiation confident that you’re getting more than just a salary.

Jobs

Cyber Security Jobs in the Public Sector: Protecting the UK’s Digital Future

Cyber threats have grown exponentially in recent years, targeting both private businesses and government institutions. As technology becomes ever more embedded in daily life—managing everything from national security to healthcare records—the risk of cyber attacks also increases. In the UK public sector, where vital services and sensitive citizen data are at stake, cyber security has become a top priority. For professionals looking for a meaningful career at the intersection of technology, national security, and public service, cyber security jobs in the UK public sector present an exciting and fulfilling path. In this blog post, we’ll delve into why cyber security is so critical to government agencies, the most in-demand roles, the skills and qualifications required, and how to navigate the application process. By the end, you’ll have a clearer sense of how you can leverage your technical expertise to protect the nation’s digital infrastructure.

Jobs

Contract vs Permanent Cybersecurity Jobs: Which Pays Better in 2025?

Cybersecurity has become one of the fastest-growing and most crucial fields in modern business. With high-profile breaches dominating headlines and the ongoing digital transformation exposing organisations to new threats, companies across the UK are competing to attract skilled cybersecurity professionals. Roles range from penetration testers (pen testers) and SOC (Security Operations Centre) analysts to compliance officers, cloud security architects, threat intelligence analysts, and CISOs (Chief Information Security Officers). As demand continues to surge, cybersecurity salaries have climbed accordingly, and businesses have turned to more flexible hiring practices. Alongside permanent employment, many professionals explore short-term day‑rate contracting or fixed-term contracts (FTCs), searching for the ideal balance of pay, job security, and growth opportunities. Which arrangement truly pays better in 2025—and which best aligns with your ambitions? In this article, we dive into the contract vs. permanent debate with a focus on cybersecurity roles. We will examine the current market, the structure of day‑rate vs. FTC vs. permanent positions, the pros and cons of each, and some hypothetical pay comparisons. By the end, you should have a clearer sense of which career path might suit your situation and goals—whether you are a seasoned specialist aiming for top rates, or an up-and-coming analyst seeking a stable environment to develop in.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.