Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead a team in monitoring and enhancing security operations for critical infrastructure.
- Company: Join a leading organisation delivering digital solutions for Central Government, prioritising safety and trust.
- Benefits: Enjoy 25 days annual leave, health cash plan, life assurance, and flexible benefits.
- Why this job: Be part of a mission-critical environment, mentoring analysts and tackling sophisticated cyber challenges.
- Qualifications: Proven SOC experience, people management skills, and familiarity with SIEM platforms required.
- Other info: Shift-based role in Hemel Hempstead; must be eligible for DV Clearance.
The predicted salary is between 48000 - 72000 £ per year.
Location: Hemel Hempstead (On-site, Shift-Based)
Security Clearance Level: Must be eligible for DV Clearance. Due to the highly secure nature of this work, all applicants will be required to gain UK Security Clearance to the highest level. You must be a British National who has been resident in the UK for at least the last 10 years and you cannot have been outside the UK for more than 28 days on any one occasion within the last 5 years.
Benefits: 25 days annual leave (option to purchase additional days), health cash plan, life assurance, pension scheme, and a generous flexible benefits fund.
Key Requirements
We are seeking a highly capable SOC Shift Lead to support critical infrastructure within the Aerospace, Defence and Security sector. You will lead from the front—mentoring analysts, managing incident triage, and driving operational improvements in a mission-critical environment. You will lead a team of 4. This is a shift-based position, following a rotation of 2 days (6am–6pm), 2 nights (6pm–6am), 4 days off.
Essential Skills and Experience:
- Proven experience in a Security Operations Centre (SOC) environment SOC Level 2
- Previous people management or line management experience
- Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk
- Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis
- In-depth understanding of client-server applications and multi-tier web environments
- Relational databases, firewalls, VPNs, enterprise AntiVirus solutions
- Networking principles (e.g. TCP/IP, WAN, LAN, SMTP, HTTP, FTP, POP, LDAP)
Desirable (Nice-to-Have):
- Experience in static malware analysis and reverse engineering
- Active DV Clearance
- Scripting or programming with Python, Perl, Bash, PowerShell, or C++
- Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1
- Familiarity with additional SIEM technologies, especially QRadar
Role & Responsibilities
As a SOC Shift Lead, you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include:
- Monitoring, triaging, and investigating alerts across host and network security systems
- Performing deep analysis of traffic, logs, and system events to identify threats and vulnerabilities
- Providing line management to SOC Analysts—developing capability and supporting career progression
- Enhancing team knowledge across SOC tooling, detection methodologies, and threat triage
- Analysing and optimising detection rules and use cases based on Mitre Att&ck
- Maintaining detailed and up-to-date incident documentation, findings, and mitigation strategies
- Acting as a representative of the SOC in key meetings and internal stakeholder engagements
- Working shifts from the on-site SOC in Hemel Hempstead
About the Organisation
Our client delivers cutting-edge digital solutions to clients in Central Government, operating in privileged environments where digital trust and national safety are paramount. We believe in a culture of collaboration, professional development, and knowledge-sharing, where employees feel valued and supported. Our work contributes meaningfully to the UK’s most complex safety- and security-critical environments, and we are proud to maintain consistently high levels of customer satisfaction across our engagements.
SOC Manager employer: Walsh Employment
Contact Detail:
Walsh Employment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land SOC Manager
✨Tip Number 1
Familiarise yourself with the specific technologies mentioned in the job description, such as Microsoft Sentinel and Splunk. Having hands-on experience or relevant projects to discuss can set you apart during interviews.
✨Tip Number 2
Brush up on your knowledge of the Mitre Att&ck Framework. Being able to articulate how you've used it in past roles or how it applies to the SOC environment will demonstrate your expertise and readiness for the position.
✨Tip Number 3
Prepare to discuss your leadership style and experiences managing teams. Think of specific examples where you've mentored others or improved team performance, as this role requires strong people management skills.
✨Tip Number 4
Since this position requires UK Security Clearance, ensure you meet the eligibility criteria. Be ready to provide details about your residency and travel history in the UK, as this will be a crucial part of the hiring process.
We think you need these skills to ace SOC Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Security Operations Centres (SOC) and any leadership roles you've held. Emphasise your familiarity with SIEM platforms like Microsoft Sentinel and Splunk, as well as your understanding of the Mitre Att&ck Framework.
Craft a Strong Cover Letter: In your cover letter, express your passion for cybersecurity and your commitment to protecting critical infrastructure. Mention specific examples of how you've led teams or improved operational processes in previous roles.
Highlight Security Clearance Eligibility: Clearly state your eligibility for DV Clearance in your application. Include details about your residency in the UK and ensure you meet the requirements regarding time spent outside the country.
Showcase Relevant Skills: List any additional skills that align with the job description, such as scripting or programming languages (Python, PowerShell, etc.) and any recognised certifications. This will help demonstrate your comprehensive skill set to the employer.
How to prepare for a job interview at Walsh Employment
✨Understand the SOC Environment
Make sure you have a solid grasp of what a Security Operations Centre (SOC) does. Familiarise yourself with the specific tools and technologies mentioned in the job description, such as Microsoft Sentinel and Splunk, as well as the Mitre Att&ck Framework.
✨Showcase Leadership Skills
As a SOC Shift Lead, you'll be managing a team. Be prepared to discuss your previous experience in people management and how you've successfully mentored others. Highlight any specific examples where you've driven operational improvements.
✨Demonstrate Technical Proficiency
Brush up on your knowledge of networking principles, client-server applications, and security measures like firewalls and VPNs. Be ready to answer technical questions that assess your understanding of these concepts and how they apply to threat detection.
✨Prepare for Scenario-Based Questions
Expect to face scenario-based questions that test your problem-solving skills in real-time situations. Think about past incidents you've managed and how you triaged alerts or handled threats, as this will showcase your analytical abilities and decision-making process.
