Security Operations Centre Lead
Department: Corporate
Employment Type: Full Time
Location: Edinburgh, Scotland
Compensation: £90,000 - £100,000 / year
Description
We have an exciting opportunity for an experienced Security Operations Centre Lead to join our business as we continue to scale.
The SOC (Security Operations Centre) Lead is responsible for overseeing the day-to-day operations of the organization’s Security Operations Centre. This includes monitoring, detecting, analysing, and responding to cybersecurity threats and incidents, as well as ensuring compliance with Cyber Essentials Plus and other industry frameworks. The ideal candidate will be a hands-on leader who can manage a team of security professionals, implement best practices, and drive continuous improvement in ENODA’s cybersecurity posture.
In addition, the SOC Lead will be responsible for communicating complex security information to stakeholders of varying technical backgrounds, both through presentations and written documentation. They will develop and deliver training programs and security policies that are accessible and understandable to all employees.
You'll spend your time:
* Leading and mentoring Security Analysts in 24/7 monitoring and incident response
* Developing and maintaining SOC processes, playbooks, and SOPs (Cyber Essentials Plus, ISO27001, etc.)
* Defining and tracking SOC KPIs and metrics
* Overseeing security alert/incident investigations, determining scope, urgency, and mitigation
* Coordinating incident response, guiding remediation and post-incident reviews
* Ensuring proper escalation procedures
* Integrating threat intelligence and vulnerability data into SOC operations
* Collaborating with threat intelligence sources to stay ahead of emerging threats
* Coordinating vulnerability scanning and remediation (Cyber Essentials Plus, ISO27001, etc.)
* Overseeing SIEM, endpoint protection, and other security technology configuration/maintenance
* Optimizing SOC tools for accurate alerting and minimal false positives
* Collaborating with cross-functional teams (IT, Infrastructure, Compliance) on security strategies
* Reporting on SOC activities, trends, and security posture
* Creating and delivering cybersecurity training
* Translating technical security information for company-wide use
The key experience we're looking for:
* Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent work experience)
* 5+ years of experience in information security or a related field, with at least 2 years in a leadership or supervisory role.
* Strong understanding of SOC operations, threat detection, incident response, and security best practices.
* Hands-on experience with SIEM platforms, EDR tools, firewalls, IDS/IPS, and other cybersecurity solutions.
* In-depth knowledge of common attack vectors (e.g., malware, phishing, vulnerabilities) and frameworks (e.g., MITRE ATT&CK).
* Familiarity with implementing and maintaining Cyber Essentials Plus, ISO 27001, and other security compliance standards
* Proven ability to create and deliver training programs, including simplifying complex technical concepts for non-technical staff
* Demonstrated leadership and team-building capabilities, especially under high-pressure situations
The following would be advantageous:
* Industry certifications such as CISSP, CISM, GIAC, CEH, or equivalent
* Proficiency in scripting languages (e.g., Python, PowerShell)
What we offer:
* Salary: £90K - £100K dependent on skills & experience
* Private Medical Insurance
* Flexible Pension policy tailored to your requirements
* 33 days annual leave + Holiday purchase/sell scheme
* Dental cash-back scheme
* Cycle-to-Work scheme
* Season travel ticket loan
* Enhanced company sick pay & Income Protection
* Life Assurance
This role is based onsite at Quartermile in Edinburgh.
* This opportunity is only available for candidates with existing right to work in the UK. We are unable to provide a certificate of sponsorship for this role.
#J-18808-Ljbffr