CrawlJobs Logo
Admiral Group Plc Logo Admiral Group Plc · IT - Administration

Soc Lead

United Kingdom · Job Posted May 14, 2026
Apply Position
Job Link Share

Job Description

The Global Security Operations Centre (SOC) is a critical part of the organisation’s security capability, operating 24/7 across three regions. As the SOC Lead, you are responsible for ensuring the continuous monitoring, detection, investigation, and response to cyber threats. You will coordinate teams across all regions to maintain a unified, high‑quality monitoring capability, drive SOC strategy, embed automation and AI-driven improvements, and develop a high‑performing analyst team. This role requires strong leadership, technical understanding, excellent communication skills, and proven experience managing security operations within a global, follow‑the‑sun operating model.

Job Responsibility

  • Lead, mentor, and develop SOC analysts across three countries
  • Oversee day‑to‑day SOC monitoring activities
  • Provide expert guidance during investigations, escalations, and complex security incidents
  • Ensure all security events are triaged, investigated, documented, and remediated
  • Maintain high levels of situational awareness
  • Contribute to the long‑term SOC strategy
  • Drive maturity improvements aligned with frameworks
  • Identify and implement opportunities to enhance analyst effectiveness
  • Lead annual/quarterly SOC roadmap planning and execution
  • Drive adoption of AI‑assisted automated triage and machine‑learning‑based threat analysis
  • Partner with engineering teams to enhance SIEM/SOAR pipelines
  • Oversee tuning and optimisation of detection rules
  • Support incident investigations with technical leadership
  • Ensure learnings from incidents and threat intelligence are captured
  • Act as the SOC technical point of contact for internal stakeholders
  • Communicate technical threats clearly to non‑technical audiences
  • Lead regular SOC operational reviews
  • Develop and maintain SOC KPIs and OKRs
  • Track metrics such as MTTD, MTTR, alert volumes, false positives
  • Ensure continuous performance monitoring
  • Conduct case reviews, root‑cause analysis, and trend reporting
  • Build a culture of technical excellence, collaboration, and accountability
  • Coach and mentor analysts
  • Conduct performance reviews
  • Foster an inclusive, high‑trust, globally aligned team environment

Requirements

  • 4+ years’ experience in SOC operations and security monitoring
  • Minimum 3 years’ experience leading and developing high‑performing teams
  • Strong understanding of SIEM platforms
  • Proven knowledge of MITRE ATT&CK, Cyber Kill Chain, and modern threat actor behaviours
  • Experience in global follow‑the‑sun SOC operations (desirable but not mandatory)
  • Strong communication, report writing, presentation, and stakeholder‑facing skills
  • Experience with SOAR technologies
  • Experience with detection content and playbooks
  • Familiarity with cloud environments (Azure, GCP) and cloud security practices
  • Background in AI/ML security tools or LLM integration within SOC workflows
  • Nice to have certifications (e.g., GCIH, GCIA, GCFE, GDAT, GCDA, GISP)

Nice to have

  • Experience with SOAR technologies
  • Experience with detection content and playbooks
  • Familiarity with cloud environments (Azure, GCP) and cloud security practices
  • Background in AI/ML security tools or LLM integration within SOC workflows
  • Nice to have certifications (e.g., GCIH, GCIA, GCFE, GDAT, GCDA, GISP)

What we offer

  • 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays)
  • Option to buy or sell up to an additional five days of annual leave
  • Eligible for up to £3,600 of free shares each year after one year of service
  • Flexible working
  • Simply Health
  • Private Health Cover
  • Critical Illness Cover
  • Cycle to Work Scheme
  • 24-Hour Ecare
  • Financial & Mortgage Advice
Admiral Group Plc - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Soc Lead

8 matching positions

Soc Lead

We are looking for an experienced SOC Lead to guide and strengthen security oper...
Location
Location
United States , Torrance
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in cybersecurity, including meaningful responsibility within a Security Operations Center environment
  • Demonstrated success leading or coordinating security incident response activities in enterprise settings
  • Strong knowledge of network security, enterprise security principles, and security operations best practices
  • Experience with threat detection, alert analysis, log review, and investigative techniques for security events
  • Familiarity with application security concepts and their relationship to broader organizational security strategies
  • Ability to document procedures clearly and translate security needs into repeatable operational processes
  • Strong communication and leadership skills, with the ability to guide teams and collaborate across technical and business functions
Job Responsibility
Job Responsibility
  • Direct the full incident response lifecycle, including initial assessment, detailed investigation, containment planning, and recovery coordination
  • Perform day-to-day security operations work by reviewing alerts, analyzing logs, identifying suspicious activity, and leading security investigations
  • Create, refine, and maintain operational procedures and response playbooks to support consistent handling of security events
  • Define effective monitoring practices, escalation paths, and workflows that improve visibility across the environment
  • Strengthen and expand the security operations capability by introducing practical processes, governance, and measurable operating standards
  • Partner with stakeholders to improve threat detection methods and ensure timely response to emerging risks
  • Provide hands-on leadership in the development of a scalable SOC model, with the potential to build and supervise a team over time
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
Read More
Arrow Right

Senior SOC Analyst/ SOC Lead

The Managed Services Information Security Analyst is a seasoned subject matter e...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned knowledge on implementation and monitoring of a company supported SIEM or security tools/technologies/concepts
  • Seasoned knowledge on security architecture, worked across different security technologies
  • Seasoned knowledge and understanding of the operation of modern computer systems and networks and how they can be compromised
  • Displays excellent customer service orientation and pro-active thinking
  • Displays problem solving abilities and is highly driven and self-organized
  • Excellent attention to detail
  • Excellent analytical and logical thinking
  • Excellent spoken and written communication abilities
  • Team player with the ability to work well with others and in group with colleagues and stakeholders
  • Ability to remain calm in pressurized situations
Job Responsibility
Job Responsibility
  • Works as part of a global Cyber Defense Centre (CDC) team that works 24/7 on rotational shifts
  • Works with client stakeholders and relevant internal teams to tune the MSSP platform and client SIEM to enable more efficient detection, analysis and reporting
  • Monitors security tools to review and analyze security logs from client environments
  • Generates continuous improvement ideas for supported security tools/technologies, to enable improvements to the company services, employee experience and client experience
  • Adheres to SOPs, customer Run Books and standard processes to ensure a globally consistent delivery whilst also proposing changes and improvements to these standards
  • Utilizes and documents best practices and amends existing documentation as required
  • Identifies opportunities to make automations which will help the clients and security delivery teams
  • Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics
  • Utilizes a broad range of skills in LAN technologies, Windows and Linux O/S's, and general security infrastructure
  • Ensures usage of knowledge articles in incident diagnosis and resolution and assists with updating as and when required
  • Fulltime
Read More
Arrow Right

SOC Lead - Cyber Security Operations

We are seeking an experienced SOC Lead to head Vodafone’s Security Operations Ce...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in security operations, including at least 4+ years in a SOC leadership or senior incident response role
  • Proven leader of 24x7 SOC teams, with a strong track record of improving MTTT/MTTR, triage quality, and operational performance
  • Technical authority in incident response, capable of leading complex investigations and making sound decisions under pressure
  • Highly experienced with SIEM platforms such as Splunk, Microsoft Sentinel, Google SecOps, ArcSight, or QRadar, and familiar with EDR/NDR technologies
  • Skilled in driving SOC automation, SOAR, and AI-enabled capabilities, with a clear understanding of governance and responsible use
  • Knowledgeable across network, endpoint, and cloud security, with a strong grasp of attacker techniques and the MITRE ATT&CK framework
  • Analytical decision-maker who balances risk, speed, and business impact in ambiguous situations
  • Passionate about developing people and building sustainable SOC capability for the future
  • Educated to degree level in Cyber Security, Computer Science, Information Technology, or a related discipline (or equivalent practical experience)
  • Holder of relevant certifications such as GIAC, CISSP, or vendor-specific SOC certifications
Job Responsibility
Job Responsibility
  • Lead and manage 24x7 SOC operations, ensuring consistent, high-quality alert monitoring, triage, and incident response across all markets
  • Own and drive SOC service performance against key KPIs including MTTT, MTTR, triage quality, and SLA adherence, delivering measurable improvements in detection quality, response speed, and efficiency
  • Oversee the full alert lifecycle, ensuring accurate investigation, containment, escalation, and high-quality incident reporting
  • Continuously enhance detection capabilities by improving SIEM use cases, alert logic, and playbooks, reducing false positives and increasing coverage across priority threat scenarios
  • Drive the adoption of automation, SOAR, and AI-assisted capabilities to improve speed, consistency, and scalability, with appropriate governance and human oversight
  • Lead SOC transformation initiatives focused on reducing alert fatigue, streamlining workflows, and improving analyst productivity
  • Build, coach, and develop a high-performing SOC team through structured capability development, performance management, and knowledge sharing
  • Act as the final escalation point for complex or high-risk incidents, applying expert judgement to validate and close cases
  • Deliver clear, data-driven SOC performance and incident reporting to senior leadership
  • Foster a culture of continuous improvement through post-incident reviews, detection retrospectives, and operational learning
What we offer
What we offer
  • The opportunity to lead a globally impactful SOC function within a recognised Cyber Defence Centre of Excellence
  • Exposure to large-scale, complex cyber defence operations across multiple international markets
  • The chance to shape and influence the future of SOC operations through automation and AI-driven transformation
  • A collaborative, inclusive environment that supports professional growth and continuous learning
  • The ability to work with advanced security technologies and experienced cyber defence professionals
  • Fulltime
Read More
Arrow Right

Lead Soc Physical Design Engineer

As a member of the Strategic Silicon Solution Group Full Chip Physical Design te...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
amd.com Logo
AMD
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 15+ years of relevant work experience
  • Expertise in ICC2/FC (Fusion Compiler) Physical Design flows/methodologies or equivalent tools
  • Expertise in Signoff tools like Primetime for Timing, Calibre for DRC/LVS, Ansys Redhawk on EMIR, PT-PX for Power signoff
  • Should have worked as a go to person or technical lead for at least few full chip projects
  • Strong technical leadership and ability to mentor/guide/coach design engineers
  • Strong inter-personal skills and ability to collaborate with teams spread across multiple geos
  • Should have good scripting experience in Shell, Python, Perl, TCL, UNIX along with decode/debug old existing scripts
  • Bachelors or Master's degree in Computer/Electronics/Electrical Engineering
  • Experience in 5nm & below technologies
  • Hands-on in reference flows, excellent debugging skills
Job Responsibility
Job Responsibility
  • Full chip level Die size estimation, Floor-planning, Power planning, IO planning, package compatibility, IO ring creation and ESD analysis
  • Full chip Hierarchical planning, block planning , block level constraints, hierarchical clock tree implementation, block integration and chip finishing
  • Low power design with power estimation/optimization including clock gating, power gating, power switch implementation and other low power techniques to reduce total power consumption
  • Full chip/Sub-system/Partition level Synthesis, Logic equivalence, implementation of low power UPF/CPF
  • Full chip / sub-system level constraints, MMMC & cross talk aware timing closure with latest OCV based analysis
  • RTL2GDSII design implementation and flow debug top down or bottoms up at chip level
  • PPA (Power, Performance, Area and Schedule) closure and flow development for key IPs like CPU, Graphics, Multimedia, Fabric cores and/or other critical sub-systems
  • Low Power signoff like Static and Dynamic power analysis at top level and/or sub-system level
  • Full chip / sub system level Clock tree synthesis and advanced clock tree implementation
  • Top level ECO strategy for RTL, pre-physical and post-route implementation considering timing, congestion and logic equivalence
Read More
Arrow Right

Platform Soc Debug Lead Engineer

WHAT YOU DO AT AMD CHANGES EVERYTHING At AMD, our mission is to build great prod...
Location
Location
United States , Austin
Salary
Salary:
200000.00 - 300000.00 USD / Year
amd.com Logo
AMD
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of Server platform components, x86 or other complex CPU architectures
  • Deeper domain expertise in areas such as IO interfaces - PCIe, CXL, RAS, Power management to drive comprehensive system level test-plan execution
  • Understanding of BMC firmware and features, including IPMI, Redfish, sensor monitoring, power control, and remote management is a plus
  • Prior experience with computer system design and/or validation, testing tools, and environments
  • Experience with handling and taking captures using Oscilloscopes, protocol analyzers, and JTAG based Debug Tools
  • Proficiency in C, Python, and shell scripting for low-level development and debug
  • Excellent organizational skills and the ability to prioritize multiple workstreams and meet tight deadlines
  • Strong networking and relationship-building skills, with the ability to drive effective decision-making across various functions and levels within the organization
  • Knowledge of pre-silicon environments (Verification, Emulation, Virtual Bring-Up) is a plus
  • BS or MS degree in Electrical Engineering or related major, with 12+ years of applicable experience
Job Responsibility
Job Responsibility
  • Lead platform and SoC debug for EPYC/AI server platforms, driving issue resolution, validation, and quality to meet program milestones
  • Lead debugging efforts for enabling AI/Server SoC platforms in domains such as high-speed data-center I/O (PCIe, CXL, etc.), RAS features to resolve issues efficiently that are seen from the program execution
  • Collaborate with partner organizations to provide root cause analysis for platform issues in a Data center environment
  • Improve debug capabilities and methodology over time by identifying common challenges or impediments to efficient debug and working with partner organizations like design, Firmware and software teams to drive innovation in silicon architecture, design, tools and methods
  • Manage and track technical issues, risks, and priorities effectively with the business unit and SW Debug tools teams
  • Manage customer and executive communications, including program status, risks and opportunities
  • Maintain strong communication skills, both verbal and written, to convey summary findings and recommendations to senior management
  • Fulltime
Read More
Arrow Right

Senior Soc Analyst/Soc Lead

The Managed Services Information Security Analyst is a seasoned subject matter e...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned knowledge on implementation and monitoring of a company supported SIEM or security tools/technologies/concepts
  • Seasoned knowledge on security architecture, worked across different security technologies
  • Seasoned knowledge and understanding of the operation of modern computer systems and networks and how they can be compromised
  • Displays excellent customer service orientation and pro-active thinking
  • Displays problem solving abilities and is highly driven and self-organized
  • Excellent attention to detail
  • Excellent analytical and logical thinking
  • Excellent spoken and written communication abilities
  • Team player with the ability to work well with others and in group with colleagues and stakeholders
  • Ability to remain calm in pressurized situations
Job Responsibility
Job Responsibility
  • Works as part of a global Cyber Defense Centre (CDC) team that works 24/7 on rotational shifts
  • Works with client stakeholders and relevant internal teams to tune the MSSP platform and client SIEM to enable more efficient detection, analysis and reporting
  • Monitors security tools to review and analyze security logs from client environments
  • Generates continuous improvement ideas for supported security tools/technologies, to enable improvements to the company services, employee experience and client experience
  • Adheres to SOPs, customer Run Books and standard processes to ensure a globally consistent delivery whilst also proposing changes and improvements to these standards
  • Utilizes and documents best practices and amends existing documentation as required
  • Identifies opportunities to make automations which will help the clients and security delivery teams
  • Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics
  • Utilizes a broad range of skills in LAN technologies, Windows and Linux O/S's, and general security infrastructure
  • Ensures usage of knowledge articles in incident diagnosis and resolution and assists with updating as and when required
  • Fulltime
Read More
Arrow Right

Senior Soc Analyst/soc Lead

The Managed Services Information Security Analyst is a seasoned subject matter e...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned knowledge on implementation and monitoring of a company supported SIEM or security tools/technologies/concepts
  • Seasoned knowledge on security architecture, worked across different security technologies
  • Seasoned knowledge and understanding of the operation of modern computer systems and networks and how they can be compromised
  • Displays excellent customer service orientation and pro-active thinking
  • Displays problem solving abilities and is highly driven and self-organized
  • Excellent attention to detail
  • Excellent analytical and logical thinking
  • Excellent spoken and written communication abilities
  • Team player with the ability to work well with others and in group with colleagues and stakeholders
  • Ability to remain calm in pressurized situations
Job Responsibility
Job Responsibility
  • Works as part of a global Cyber Defense Centre (CDC) team that works 24/7 on rotational shifts
  • Works with client stakeholders and relevant internal teams to tune the MSSP platform and client SIEM to enable more efficient detection, analysis and reporting
  • Monitors security tools to review and analyze security logs from client environments
  • Generates continuous improvement ideas for supported security tools/technologies, to enable improvements to the company services, employee experience and client experience
  • Adheres to SOPs, customer Run Books and standard processes to ensure a globally consistent delivery whilst also proposing changes and improvements to these standards
  • Utilizes and documents best practices and amends existing documentation as required
  • Identifies opportunities to make automations which will help the clients and security delivery teams
  • Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics
  • Utilizes a broad range of skills in LAN technologies, Windows and Linux O/S’s, and general security infrastructure
  • Ensures usage of knowledge articles in incident diagnosis and resolution and assists with updating as and when required
  • Fulltime
Read More
Arrow Right

Senior SOC Analyst/SOC Lead

The Managed Services Information Security Analyst is a seasoned subject matter e...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned knowledge on implementation and monitoring of a company supported SIEM or security tools/technologies/concepts
  • Seasoned knowledge on security architecture, worked across different security technologies
  • Seasoned knowledge and understanding of the operation of modern computer systems and networks and how they can be compromised
  • Displays excellent customer service orientation and pro-active thinking
  • Displays problem solving abilities and is highly driven and self-organized
  • Excellent attention to detail
  • Excellent analytical and logical thinking
  • Excellent spoken and written communication abilities
  • Team player with the ability to work well with others and in group with colleagues and stakeholders
  • Ability to remain calm in pressurized situations
Job Responsibility
Job Responsibility
  • Works as part of a global Cyber Defense Centre (CDC) team that works 24/7 on rotational shifts
  • Works with client stakeholders and relevant internal teams to tune the MSSP platform and client SIEM to enable more efficient detection, analysis and reporting
  • Monitors security tools to review and analyze security logs from client environments
  • Generates continuous improvement ideas for supported security tools/technologies, to enable improvements to the company services, employee experience and client experience
  • Adheres to SOPs, customer Run Books and standard processes to ensure a globally consistent delivery whilst also proposing changes and improvements to these standards
  • Utilizes and documents best practices and amends existing documentation as required
  • Identifies opportunities to make automations which will help the clients and security delivery teams
  • Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics
  • Utilizes a broad range of skills in LAN technologies, Windows and Linux O/S's, and general security infrastructure
  • Ensures usage of knowledge articles in incident diagnosis and resolution and assists with updating as and when required
  • Fulltime
Read More
Arrow Right