Interim Head of SOC (6 months FTC)

Your Mission 💪

As our interim Head of SOC, you are charged with the mission to lead the Security Operations Centre (SOC) team, ensuring efficient operations and maintaining high standards of cybersecurity. You will focus on improving incident response times, reducing false positives, and enhancing threat detection capabilities. By designing and implementing streamlined processes and optimizing automations and workflows, you will boost the SOC’s performance. Additionally, you will monitor and analyse security events, coordinate effective responses, and conduct regular risk assessments to mitigate vulnerabilities. 

How you’ll fit in to the big picture ✨

You will play a crucial role in our cybersecurity strategy, directly impacting the safety and security of our clients. Your leadership and expertise will ensure that our SOC team operates at peak efficiency, aligning with our organizational goals. By mentoring and managing the team, you will enhance their skills and performance, contributing to a collaborative and supportive work environment. Your efforts will help us maintain strong client relationships and ensure customer satisfaction. 

What you’ll be doing 🎯

• Lead, mentor, and evaluate the SOC team while coaching and training to enhance team skills and performance
• Manage and optimize SIEM and SOAR platforms.
• Improve incident response times and threat detection
• Optimize team processes, automations, and workflows while monitoring ticket data and logs, collaborating on business reporting
• Test and implement new automation techniques
• Act as the primary escalation point for security incidents
• Develop and maintain SOC processes and documentation
• Monitor and analyse security events, coordinating effective responses and create security services roadmaps
• Conduct regular risk assessments and manage threat and vulnerability
• Oversee customer security reporting and conduct service reviews

What experience we think you’ll need 🚀

• Proven experience as a technical manager leading a team
• Strong expertise in cybersecurity with deep understanding of cybersecurity best practices
• Excellent communication skills for both technical and non-technical staff
• Ability to remain calm and make quick decisions under pressure
• Strong analytical and problem-solving skills
• Knowledge of security architecture methodologies
• Relevant Information Security certification (e.g. CISM, CISSP, CYSA, GIAC, CEH, CCSP) or willingness to obtain.
• Experience with SOC operations and SIEM/SOAR tools
• Extensive knowledge of technical security controls (firewalls, IPS, endpoint security, web and email filtering, network security logging)
• Experience in supporting secure infrastructure from change to business-as-usual
• Ability to provide security expertise, guidance, and assurance for complex projects
• Capable of overseeing testing plans, recording results, and recommending remediation