CrawlJobs Logo

Soc Lead

admiralgroup.co.uk Logo

Admiral Group Plc

Location Icon

Location:
United Kingdom

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Global Security Operations Centre (SOC) is a critical part of the organisation’s security capability, operating 24/7 across three regions. As the SOC Lead, you are responsible for ensuring the continuous monitoring, detection, investigation, and response to cyber threats. You will coordinate teams across all regions to maintain a unified, high‑quality monitoring capability, drive SOC strategy, embed automation and AI-driven improvements, and develop a high‑performing analyst team. This role requires strong leadership, technical understanding, excellent communication skills, and proven experience managing security operations within a global, follow‑the‑sun operating model.

Job Responsibility:

  • Lead, mentor, and develop SOC analysts across three countries
  • Oversee day‑to‑day SOC monitoring activities
  • Provide expert guidance during investigations, escalations, and complex security incidents
  • Ensure all security events are triaged, investigated, documented, and remediated
  • Maintain high levels of situational awareness
  • Contribute to the long‑term SOC strategy
  • Drive maturity improvements aligned with frameworks
  • Identify and implement opportunities to enhance analyst effectiveness
  • Lead annual/quarterly SOC roadmap planning and execution
  • Drive adoption of AI‑assisted automated triage and machine‑learning‑based threat analysis
  • Partner with engineering teams to enhance SIEM/SOAR pipelines
  • Oversee tuning and optimisation of detection rules
  • Support incident investigations with technical leadership
  • Ensure learnings from incidents and threat intelligence are captured
  • Act as the SOC technical point of contact for internal stakeholders
  • Communicate technical threats clearly to non‑technical audiences
  • Lead regular SOC operational reviews
  • Develop and maintain SOC KPIs and OKRs
  • Track metrics such as MTTD, MTTR, alert volumes, false positives
  • Ensure continuous performance monitoring
  • Conduct case reviews, root‑cause analysis, and trend reporting
  • Build a culture of technical excellence, collaboration, and accountability
  • Coach and mentor analysts
  • Conduct performance reviews
  • Foster an inclusive, high‑trust, globally aligned team environment

Requirements:

  • 4+ years’ experience in SOC operations and security monitoring
  • Minimum 3 years’ experience leading and developing high‑performing teams
  • Strong understanding of SIEM platforms
  • Proven knowledge of MITRE ATT&CK, Cyber Kill Chain, and modern threat actor behaviours
  • Experience in global follow‑the‑sun SOC operations (desirable but not mandatory)
  • Strong communication, report writing, presentation, and stakeholder‑facing skills
  • Experience with SOAR technologies
  • Experience with detection content and playbooks
  • Familiarity with cloud environments (Azure, GCP) and cloud security practices
  • Background in AI/ML security tools or LLM integration within SOC workflows
  • Nice to have certifications (e.g., GCIH, GCIA, GCFE, GDAT, GCDA, GISP)

Nice to have:

  • Experience with SOAR technologies
  • Experience with detection content and playbooks
  • Familiarity with cloud environments (Azure, GCP) and cloud security practices
  • Background in AI/ML security tools or LLM integration within SOC workflows
  • Nice to have certifications (e.g., GCIH, GCIA, GCFE, GDAT, GCDA, GISP)
What we offer:
  • 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays)
  • Option to buy or sell up to an additional five days of annual leave
  • Eligible for up to £3,600 of free shares each year after one year of service
  • Flexible working
  • Simply Health
  • Private Health Cover
  • Critical Illness Cover
  • Cycle to Work Scheme
  • 24-Hour Ecare
  • Financial & Mortgage Advice

Additional Information:

Job Posted:
May 14, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Admiral Group Plc - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Soc Lead

SOC Insider Threat Lead Analyst

SOC Insider Threat Lead Analyst position at Citi, responsible for monitoring, re...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years working in the security & operations fields
  • Bachelor's degree or higher (Computer Science or Cybersecurity preferred) or equivalent work experience
  • Excellent knowledge of network security, TCP/IP, various operating systems (Windows/UNIX), and web technologies
  • Ability to read and understand packet level data
  • Experience with user behavior analytics, DLP, IDS/IPS, firewalls, and host security products (HIPS, AV, EDR, etc)
  • Certifications from EC-Council, GIAC, or (ISC)² are preferred [CISSP, C|EH, GCIA, CCNA]
  • Good communication skills with the ability to articulate clearly in high stress situations
  • Skills and proficiency with MS PowerPoint, Excel, Access or other analytical tools
Job Responsibility
Job Responsibility
  • Perform monitoring, research, assessment and analysis on alerts from various security tools
  • Recommend and review new use cases for insider threat monitoring
  • Follow pre-defined actions to investigate security incidents or perform incident response actions
  • Execute daily ad hoc tasks or lead projects as needed
  • Participate in or lead daily and ad-hoc conference calls
  • Create, update or provide process documentation, or provide requested evidence for compliance & controls requests
  • Fulltime
Read More
Arrow Right

Lead IP/SOC Verification

In this high-profile role, the Lead IP/SOC Verification will be the overall desi...
Location
Location
United States , Folsom
Salary
Salary:
171200.00 - 256800.00 USD / Year
amd.com Logo
AMD
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience focused on IP and/or SOC verification with successful completion of multiple ASICs that are in production
  • Requires proven track record in technical leadership. This includes planning, execution, tracking, verification closure, and delivery to programs
  • Requires strong experience with development of UVM, SystemVerilog, C/C++ and Scripting Languages
  • Requires strong understanding of state of the art of verification techniques, including assertion and metric-driven verification
  • Good understanding of code and functional coverage, ability to influence coverage improvement with design and verification teams
  • Good understanding of requirements management, documentation management, and defect management
  • Ability to grasp concepts during discussions and turn minutes into action items
  • Able to communicate concepts and processes with stakeholders
  • Analytical, self-motivated, organized, detailed-oriented and results-oriented
  • Excellent interpersonal skills including the ability to work well with multiple people and teams, ability to communicate progress to team members on a regular basis
Job Responsibility
Job Responsibility
  • Closely work with designers and architect to come up with features, verification and execution plans
  • Own and lead verification quality for GFXIP projects
  • Engage with IP and SOC teams to drive closure to verification strategy
  • Working with architects and verification leads and driving quality test plan specifications
  • Collaborate with architects, hardware engineers, and firmware engineers to understand the complex features and impact to System level/SOC environment
  • Developing verification strategy, infrastructure and needed improvements
  • Driving Pre and post Si verification closure to meet schedule with quality
  • Leading Post Si verification activities to drive triage with FW, SW, IP, SOC and various teams. Plug holes appropriately to improve quality of the IP
  • Working with each domain (sub-system) lead and guide them to get better quality and verification outcome
  • Automating workflows in a distributed compute environment
  • Fulltime
Read More
Arrow Right

Security and Compliance Lead

We’re on the hunt for a hands-on, sharp-thinking Security & Compliance Lead to l...
Location
Location
Salary
Salary:
110000.00 - 120000.00 USD / Year
corporatetools.com Logo
Corporate Tools
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience in security and compliance
  • 5+ years in security, compliance, or audit roles within IT infrastructure or data centers
  • Demonstrable experience managing SOC 2, ISO 27001, PCI DSS, HIPAA, or GDPR compliance
  • Hands‑on familiarity with physical security systems like CCTV, badge control, biometric access, and alarms
  • Deep knowledge of SIEM systems, incident response frameworks, and risk assessment methodologies
  • Comfortable with networking/physical infrastructure concepts: VLANs, firewalls, environmental sensors, racks
  • A great human
  • Strong leadership and interpersonal skills
  • A person who gets things done themselves with or without a team
Job Responsibility
Job Responsibility
  • Develop and maintain security policies, standards, and baseline configurations for the data center
  • Enhance layered physical security systems, including CCTV, badge readers, biometrics, and intrusion alarms
  • Manage 24/7 access controls, including visitor management, staff clearances, badge systems, and vendor accreditation
  • Lead risk assessments (e.g., FMEA, threat modeling), identify vulnerabilities, and recommend remediation
  • Ensure compliance with standards like SOC 2, ISO 27001, and PCI DSS
  • coordinate audits and maintain audit-ready documentation
  • Serve as Incident Commander or key responder for physical breaches, alarms, or policy violations
  • lead investigations and reporting
  • Maintain and improve incident response playbooks
  • train staff on protocols and best practices
What we offer
What we offer
  • 100% employer-paid medical, dental and vision for employees
  • Annual review with raise option
  • 22 days Paid Time Off accrued annually, and 4 holidays
  • After 3 years, PTO increases to 29 days. Employees transition to flexible time off after 5 years with the company—not accrued, not capped, take time off when you want
  • The 4 holidays are: New Year’s Day, Fourth of July, Thanksgiving, and Christmas Day
  • Paid Parental Leave
  • Up to 6% company matching 401(k) with no vesting period
  • Quarterly allowance
  • Use to make your remote work set up more comfortable, for continuing education classes, a plant for your desk, coffee for your coworker, a massage for yourself... really, whatever
  • Open concept office with friendly coworkers
Read More
Arrow Right

SOC Operations Manager

This is an exceptional opportunity to lead, shape, and elevate a Security Operat...
Location
Location
United Kingdom , Hemel Hempstead
Salary
Salary:
80000.00 - 90000.00 GBP / Year
thepeoplenetwork.co.uk Logo
Fynity
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience leading SOC operations in a 24×7 or multi-client environment
  • Strong background in incident management, threat detection, and escalation processes
  • Technical depth across SIEM/SOAR tooling, preferably Splunk or Microsoft Sentinel
  • A passion for developing teams — coaching analysts and building collaborative, high-performing cultures
  • Strong understanding of frameworks and standards such as NIST, MITRE ATT&CK, ISO 27001, CREST, and ITIL
  • Excellent communication skills, with the ability to translate technical risks into clear business impacts
  • Security Clearance – Willing and Able to go through the DV process
  • Have held budgetary responsibility
Job Responsibility
Job Responsibility
  • Lead and develop a skilled SOC team, inspiring a culture of continuous learning and technical excellence
  • Oversee the full lifecycle of security incidents — from detection through to resolution and review
  • Manage and optimise SIEM and SOAR platforms (Splunk, Sentinel, Elastic) to enhance detection and automation capabilities
  • Drive continuous improvement through ITIL-aligned processes and adherence to CREST standards
  • Oversee vulnerability management, threat intelligence, and incident response plans
  • Communicate security posture, risks, and incident outcomes clearly to senior stakeholders
  • Ensure operational readiness and contribute to maintaining industry accreditations
  • Fulltime
Read More
Arrow Right

Lead Cyber Security Analyst

e2e-assure is recruiting a Lead Cyber Security Analyst to work in our lively Oxf...
Location
Location
United Kingdom , Oxfordshire
Salary
Salary:
Not provided
e2e-assure.com Logo
e2e-assure
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Prior experience working in a cyber security-focused role, ideally SOC or Incident Response experience
  • Significant experience with log monitoring tools and SIEM platforms such as Splunk or Microsoft Sentinel
  • Experience with leading major incident investigations
  • Ability to train, coach, and mentor technical teams to help them achieve their potential
  • Advanced knowledge of cybersecurity and insight into recent and trends
  • Familiar with host and network based forensics and concepts
  • Experience of vulnerability management process
  • Experience with Log analysis / Log forensics (including PCAP analysis)
  • Endpoint artifact analysis (investigation packages etc)
  • Relevant computing or cyber university degree or Security certifications such as CompTIA Advanced Security Practitioner (CASP+), GIAC Certified Forensic Analyst, GIAC Cyber Threat Intelligence (GCTI), GIAC Open Source Intelligence (GOSI), GIAC Defending Advanced Threats (GDAT), GIAC Security Expert (GSE)
Job Responsibility
Job Responsibility
  • Improving the quality of detections and response/analysis routines and playbooks
  • Improving the quality of our threat intelligence platform, threat indicators and assist in optimisation of threat data
  • Supporting the SOC with wider cyber security expertise – advising, mentoring and coaching. Focusing on improving SOC efficiency by working across the business to bring down alert volume and collaborate on improvements, train SOC staff on investigations and rule tuning
  • Supporting the SOC team to achieve agreed SLAs and deliver high quality alerts, tickets, and incidents
  • Collating incident statistics and driving quality improvements
  • Lead and train the SOC on threat hunting, using this to drive improvements to detection capability
  • Lead the SOC to produce threat briefs for significant cyber events where customers need to take action
  • Proactively share knowledge within the team and the wider company, through training and mentoring sessions
  • Escalation point for the SOC for technical analysis
  • Incident Management Lead for the SOC
What we offer
What we offer
  • Contributory pension scheme
  • 25 days annual leave + Bank holidays (with additional for continued service)
  • private health insurance
  • enhanced maternity/ paternity/ sick pay
  • Cycle to Work scheme
  • Home and Tech purchase scheme
  • Employee assistance program
  • Fulltime
Read More
Arrow Right

Head of Security Monitoring and Threat Hunting

The Head of Security Monitoring and Threat Hunting is accountable for the leader...
Location
Location
United Kingdom
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years proven experience managing a 24/7 SOC within a large enterprise environment
  • Demonstrated line management experience of SOC Leads and Analysts
  • Strong background in security investigations, triage, and escalation
  • Experience leading or establishing proactive threat hunting
  • Practical experience implementing AI, SOAR, and automation within SOC operations
  • Understanding of modern threat actor tradecraft
  • Ability to balance SLA performance with investigation quality and analyst wellbeing
  • Strong stakeholder management and executive communication skills
  • Experience operating in regulated UK environments (e.g. financial services)
  • Experience delivering SOC maturity transformation
Job Responsibility
Job Responsibility
  • Manage the delivery of a global, follow-the-sun SOC operation aligned to enterprise risk and business priorities
  • Own SOC KPIs, SLAs, and quality metrics, ensuring performance targets are met without compromising investigation depth
  • Ensure robust triage, escalation, and handover processes are consistently applied
  • Maintain strong governance, documentation, and audit readiness
  • Own the continuous tuning and optimisation of detection rules to reduce false positives and improve signal quality
  • Provide line management, direction, and coaching to SOC Leads, ensuring consistent operational standards across all shifts
  • Set clear objectives, performance measures, and development plans for SOC Leads
  • Build a high-performing, resilient SOC culture focused on professionalism, accountability, and continuous improvement
  • Ensure effective workforce planning, shift coverage, and succession planning within a 24/7 operating model
  • Work with other cross functional leaders/teams to implement efficient business processes and support the overall maturity of the Cyber function
What we offer
What we offer
  • 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays)
  • Option to buy or sell up to an additional five days of annual leave
  • Eligible for up to £3,600 of free shares each year after one year of service
  • Financial & Mortgage Advice
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Flexible Working
  • Simply Health
  • Private Health Cover
  • Critical Illness Cover
  • Fulltime
Read More
Arrow Right

Technologist, ASIC Development Engineering

We are looking for a highly skilled and experienced individual for SoC PD lead p...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
sandisk.com Logo
Sandisk
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or master’s degree in electrical engineering, Computer Engineering, or a related field
  • A minimum of 13 to 15 years of experience in leading RTL to GDSII implementation effort across various SoCs
  • Proven ability in technically leading a small/medium-sized team for executing projects preferred
  • Hands-on experience on the entire PD Flow from RTL to GDSII
  • Should have a good understanding of Floor planning, Power Planning, Placement & Optimization, CTS, Routing, Design Convergence, and Sign-off with in-depth expertise in at least one of these domains
  • Working knowledge about OCV, MM/MC optimization and multi-power designs (Level shifters, Isolation cells, etc)
  • Exposure to static timing analysis fixes including automated ECO generation
  • Strong in areas on CTS, Power, Bump planning, Floorplan
  • Experience with tools (e.g., Synopsys FusionCompiler, PrimeTime, Cadence Innovus, Constraints Manager, Redhawk, Calibre etc.) and methodologies
  • Library preparation in any environment (Synopsys, Cadence, etc)
Job Responsibility
Job Responsibility
  • To be responsible for leading RTL-to-GDSII SoC implementation effort
  • To collaborate with cross-functional teams, including Design, Verification, Analog, DFT, SIPI etc.
  • To develop and guide the team members in their work, enhancing their technical capabilities and increasing productivity
  • To ensure process compliance during project execution and enable / participate in technical discussions/reviews
  • To prepare and submit status reports for minimizing exposure and risks on the project or closure of escalations
  • Stay abreast of industry trends and emerging technologies in related fields, and incorporate best practices into the team’s workflow
  • Foster a culture of innovation, collaboration, and continuous improvement
  • Fulltime
Read More
Arrow Right

Operations & Security Manager

The SOC Manager is the designated leader responsible for the day-to-day manageme...
Location
Location
United States , Tallahassee
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's degree in engineering, information technology, or related field (or equivalent formal training and experience)
  • Minimum 10 years of overall experience, including at least 7 years in Information SPAA, cybersecurity, system administration, or engineering
  • At least 7 years as ISSO, security analyst, or security engineer with hands-on experience in NIST Risk Management Framework (RMF), audit log reviews, system monitoring, SPAA processes, FISMA requirements, vulnerability and compliance scanning, continuous monitoring, security testing and evaluation, security policies
  • Minimum 7 years of experience in vertical disciplines such as law enforcement, anti-terrorism, biological science, banking, transportation, or similar fields
  • Minimum 5 years managing a SOC or similar 24x7 security operations team
Job Responsibility
Job Responsibility
  • Lead the design and implementation of complex IT security solutions, including Threat Management, Vulnerability Management, and Identity and Access Management
  • Evaluate security control compliance with federal and State of Florida requirements and client monitoring strategies
  • Develop and manage security standards for physical and virtual desktop environments
  • Identify and manage risks associated with information systems
  • Coordinate with the client's Cybersecurity Unit to maintain compliance and Authorization to Operate (ATO)
  • Ensure secure operation, maintenance, and disposal of assigned assets and systems
  • Conduct annual assessments to ensure policy and standards compliance
  • Address security requirements throughout the system lifecycle
  • Establish and review audit trails and retain audit logs
  • Generate and interpret documentation for CSAM compliance
  • Fulltime
Read More
Arrow Right