Role OverviewWe are seeking an experienced and hands-on SOC Operations Technical Lead to lead a team of SOC Analysts operating in a 24/7/365 environment.This is a senior, technically focused leadership role within our Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio.While you will lead and mentor a team, this is not a purely managerial role. You will remain deeply involved in technical delivery, acting as an escalation point, leading complex investigations, and continuously improving SOC capabilities.Key ResponsibilitiesTeam Leadership & SOC OperationsLead day-to-day SOC operations across all shifts, ensuring consistent 24/7 coverageManage shift schedules, handovers, and on-call rotationsAct as the primary escalation point for security incidents and analyst queriesEnsure high-quality triage, investigation, and response aligned to SOC processesDrive team development through training, coaching, and technical mentoringEnsure accurate and timely case management (HALO) and delivery against SLAsTechnical Leadership & Continuous ImprovementProvide expert guidance on threat detection, incident response, and threat huntingLead escalations for complex or high-severity incidents across client environmentsDevelop and optimise detection rules, playbooks, and automationImprove SOC tooling (SIEM, EDR/XDR, SOAR) and operational processesDesign and maintain advanced detection use cases and correlation logicClient Engagement & ConsultingAct as a trusted advisor to clients, supporting security reviews and incident analysisTranslate technical findings into clear, actionable recommendationsSupport continuous improvement of client security postureCollaborationWork closely with Threat Intelligence, Engineering, and Incident Response teamsEnhance detection capability through intelligence sharing and tool optimisationAlign processes to strengthen overall security operations effectivenessStrategic ContributionIdentify opportunities to enhance MSSP services and capabilitiesMonitor emerging threats, technologies, and industry trendsEnsure compliance with regulatory standards and internal frameworksSkills & ExperienceEssential7+ years in Security Operations, including 3-4 years in a senior/lead SOC roleStrong hands-on experience with:SIEM (e.g. Microsoft Sentinel, CrowdStrike)EDR/XDR (e.g. CrowdStrike, Microsoft Defender, Carbon Black)SOAR and threat intelligence platformsProven expertise in threat hunting and incident responseExperience developing and tuning detection rules in multi-tenant environmentsStrong automation skills to improve SOC efficiencyExcellent client-facing and communication skillsDesirableCertifications such as CISSP, GIAC (GCIH, GCIA, GREM), SC-200 or SC-300Experience in cloud security operationsBackground in MSSP or consulting environmentsFamiliarity with frameworks such as NIST, ISO27001, or ITILKey CompetenciesStrong technical depth with the ability to simplify complex conceptsExcellent analytical and problem-solving skills under pressureConfident communicator with strong stakeholder engagement skillsCollaborative leadership style with a focus on mentoring and developmentAbility to manage multiple priorities in a fast-paced SOC environmentJBRP1_UKTJ