FINTEC recruit is supporting recruitment for a Cyber Security (SOC) Lead. This is a permanent position, based in Hemel Hempstead, working a rotation of 2 days on / 2 nights on, then 4 days off. Hours are 6 am to 6 pm, then 6 pm to 6 am. Salaries are discussed on application and negotiable based on experience. The role requires passing UK Security Clearance (DV level). You will support critical infrastructure within aerospace, defence, and security sectors. The position involves driving operational improvements, working onsite, leading, and mentoring a small team.
Responsibilities:
* Monitoring, triaging, and investigating alerts across host and network security systems
* Performing deep analysis of traffic, logs, and system events to identify threats and vulnerabilities
* Providing mentoring and line management to SOC Analysts
* Enhancing team knowledge across SOC tooling, detection methodologies, and threat triage
* Analyzing and optimizing detection rules and use cases based on MITRE ATT&CK
* Maintaining detailed and up-to-date incident documentation, findings, and mitigation strategies
* Acting as a representative of the SOC in key meetings and internal stakeholder engagements
Skills and Experience:
* Proven experience in a Security Operations Centre (SOC) environment
* Qualified at SOC Level 2
* Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk
* Knowledge and use of the MITRE ATT&CK Framework for detection and threat analysis
* Experience of static malware analysis and reverse engineering (desirable)
* Scripting or programming with Python, Perl, Bash, PowerShell or C++ (desirable but not essential)
* SIEM technologies knowledge such as QRadar (desirable but not essential)
* In-depth understanding of client-server applications and multi-tier web environments
* Knowledge of relational databases, firewalls, VPNs, enterprise AntiVirus solutions
Full details of the Cyber Security SOC Lead role are available upon application. To apply, please submit your current CV or apply via our FINTEC recruit website.
#J-18808-Ljbffr