Security Operations Centre Manager (SOC)
UBDS Digital empowers government organisations with tailored digital transformation solutions. The Security Operations Centre (SOC) Manager is responsible for overseeing the daily operations of the SOC team and ensuring the protection of UBDS’ and its customers’ information systems by monitoring, detecting, responding to, and recovering from security incidents. This role involves managing a team of SOC analysts and engineers, developing and refining SOC processes, and collaborating with other cybersecurity teams to ensure a comprehensive security posture.
Responsibilities
* SOC Operations Management
* Oversee the daily operations of the SOC, ensuring 24/7/365 monitoring, detection, and response to security incidents.
* Lead the SOC team in handling security events, incidents, and vulnerabilities, ensuring timely and effective resolution.
* Develop and maintain SOC processes, including incident detection, investigation, response, and escalation procedures.
* Team Leadership and Development
* Manage, mentor, and develop a team of SOC analysts and engineers, providing guidance, training, and performance evaluations.
* Ensure the team is equipped with the necessary skills and knowledge to handle emerging threats and technologies.
* Foster a culture of continuous improvement and professional development within the SOC team.
* Technology and Tools Management
* Oversee the implementation, management and continual development of SOC technologies, including SIEM (e.g., Microsoft Sentinel, Splunk), EDR (e.g., Microsoft Defender for Endpoint), and SOAR (e.g., Palo Alto Cortex XSOAR).
* Ensure the integration of threat intelligence platforms, vulnerability management tools, and other security technologies into SOC operations.
* Collaborate with the IT and cybersecurity teams to optimize the use of security tools and ensure they are effectively supporting SOC activities.
* Lead the incident response process, ensuring incidents are identified, contained, eradicated, and recovered in accordance with established protocols.
* Coordinate forensic investigations and root cause analysis for major incidents, working closely with the incident response team.
* Develop and refine incident response playbooks and ensure they are consistently followed by the SOC team.
* Identify areas for improvement within the SOC and implement enhancements to processes, tools, and team capabilities.
* Stay up-to-date with the latest cybersecurity trends, threats, and technologies, and apply this knowledge to improve SOC operations.
* Conduct regular reviews of SOC performance metrics and incident reports, providing insights and recommendations to senior management.
* Compliance and Reporting
* Ensure that all SOC operations comply with relevant security standards (e.g., ISO27001, NIST, GDPR).
* Provide regular reports to senior management on SOC activities, including incident trends, SOC performance, and security posture.
* Lead audits of SOC processes and systems, ensuring alignment with industry best practices and regulatory requirements.
* Collaboration and Communication
* Act as the primary point of contact for SOC-related matters, liaising with other cybersecurity teams, IT, and business units.
* Coordinate with external partners, including third-party incident response teams and threat intelligence providers.
* Represent the SOC in meetings with senior management and external stakeholders, providing insights on security operations and risk management.
About You
* Experience
* Minimum of 5-7 years of experience in cybersecurity, with at least 3 years in a SOC or incident response role.
* Proven experience in managing or leading a SOC team, with a track record of successfully handling complex security incidents.
* Strong experience with SOC technologies, including SIEM, EDR, SOAR, and threat intelligence platforms.
* Certifications
* Relevant certifications such as CISSP, CISM, CEH, GIAC, or equivalent are highly desirable.
* Skills
* In-depth knowledge of cybersecurity frameworks (e.g., NIST, ISO27001) and best practices.
* Strong leadership and team management skills, with the ability to motivate and develop a high-performing team.
* Excellent problem-solving and analytical skills, with the ability to think critically and make sound decisions under pressure.
* Strong communication skills, with the ability to effectively communicate complex security issues to technical and non-technical stakeholders.
* Experience with incident response, forensic investigations, and threat hunting.
Additional Requirements
* Availability to work outside of regular business hours as needed, particularly during security incidents.
* Ability to handle high-pressure situations and make decisions quickly.
* Strong ethical standards and a commitment to maintaining the highest levels of confidentiality and integrity.
Why people choose to grow their careers at UBDS Group
Professionals choose to grow their careers at UBDS Group for its reputation as a dynamic and forward-thinking organisation that is deeply committed to both innovation and employee development. At UBDS Group, employees are given unique opportunities to work on cutting-edge projects across a diverse range of industries, exposing them to new challenges and learning opportunities that are pivotal for professional growth.
Employee Benefits
* Training – All team members are offered a number of options in terms of personal development, whether it is technical led, business acumen or methodologies. We want you to grow with us and to help us achieve more.
* Private medical cover for you and your spouse/partner, offered via Vitality.
* Discretionary bonus based on a blend of personal and company performance.
* Holiday – You will receive 25 Days holiday, plus 1 day for Birthday and 1 day for your work anniversary in addition to UK bank holidays.
* Electric Vehicle leasing with salary sacrifice.
* Death in service cover.
* Hybrid Working – UBDS Group offers a flexible working environment to help enable you to operate at your maximum regardless of your location.
About UBDS Group
At UBDS Group our mission is to support entrepreneurs who are setting new standards with technology solutions across cloud services, cybersecurity, data and AI, ensuring that every investment advances our commitment to innovation, making a difference, and creating impactful solutions for organisations and society.
We are an equal opportunities employer and do not discriminate on the grounds of gender, sexual orientation, marital or civil partner status, pregnancy or maternity, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.
#J-18808-Ljbffr