SOC Operations Technical Lead

Location- London (remote)

Salary- £70K + car allowance +benefits

The purpose of this role is to lead a team of SOC analysts, who are collectively operating on a 24/7/365 basis. This role reports to Head of SOC Operations. This hands-on position serves as the senior technical authority for SOC operations, driving excellence in threat detection, incident response, and security operations across a diverse multi-client portfolio.

Although you will manage team of SOC analysts, this is not a purely managerial role; you will remain deeply involved in technical work while elevating team capabilities and delivering strategic value to our clients.

Responsibilities:-

• Lead day-to-day activities of the SOC analysts across all shifts (24/7 operations through and on call rotation).
• Manage team scheduling, shift handovers, and always ensure proper coverage.
• Evaluate, recommend, and support the implementation and optimization of SOC technologies (SIEM, EDR/XDR, SOAR, threat intelligence platforms) across heterogeneous client stacks.
• 7+ years of experience in Security Operations, with at least 3–4 years in a senior/lead technical role within a SOC
• Strong hands-on expertise with industry-leading tools:

-SIEM platforms (Microsoft Sentinel, CrowdStrike)

-EDR/XDR solutions (CrowdStrike, Microsoft Defender, Carbon Black)

-SOAR, threat intelligence platforms, and network security tools.

• Proven experience in advanced threat hunting.
• Solid automation skills to improve SOC efficiency.

Preferred Qualifications

• Relevant certifications: CISSP, GIAC (GCIH, GCIA, GREM), SC-200, SC-500 or equivalent.
• Experience with cloud security operations environments.
• Background in professional services, consulting, or MSSP delivery.
• Familiarity with ITIL, NIST, ISO27001 or other security frameworks in a service provider context.