SOC Coordinator in Stevenage

World Class Defence Organisation based in Stevenage, Hertfordshire is currently looking to recruit a SOC Coordinator subcontractor on an initial 6 month contract. Suitable backgrounds may include: SOC Leadership, SOC Manager, Cyber Security governance and assurance, Information Security Management, Defence or National Security Operations. Military Leadership appointments with responsibility for people, operations and governance.

Rate: £80.00 per hour

Location: Stevenage

Hybrid / Remote working: 3-4 days a week on site min, 1-2 remote.

Contract: 37 Hours per week

Overtime: Hours worked over 37 hours per week will be calculated at time and a quarter

Duration: 12 Months (initially and then ongoing and long-term thereafter)

IR35 status: Inside IR35 (Umbrella)

The SOC is undergoing a period of growth and maturity, with a focus on strengthening governance, improving operational resilience, enhancing monitoring capability in accordance with defence specific compliance requirements such as the DCC. The successful applicant will act as the deputy to the SOC Manager and serve as a key operational and governance lead within the team. This role is primarily focussed on leadership, governance, stakeholder engagement and operational effectiveness.

Responsibilities:

• Support for the operational functions of the UK SOC.
• Coordinate the day-to-day operation of the SOC whilst ensuring governance activities, audits, working groups, recruitment, onboarding, documentation and security improvement activities continue to progress effectively.
• Coordinate the implementation and maturity of Cyber security capability within DEx UK (Digital Excellence is the IT department).
• Deputise for the SOC Manager as required.
• Deliver the SOC Security Working Groups across DEx and effectively track remediation and actions.
• Responsible for the effective delivery and resilience of the 24x7 SOC shift rota.
• Support the SOC Manager in the recruitment and onboarding process for all SOC resourcing.
• Work in close collaboration with the Cyber Security Capability Manager.
• Responsible for the responses and support to external requests and auditing of DEx within a cyber security context, such as ISO27001 audits, DCC and CE requests, GDPR requests, contractual questionnaires from customers or suppliers.
• Coordinate vetting and access requests within the SOC in collaboration with the Cyber Security Capability Manager.
• Responsible for attending the DEx CAB and ensuring that cyber security and compliance due diligence has taken place as well as reporting into SOC any impacting changes.
• Take responsibility for the implementation of the Group cyber security (SOC) strategy within DEx UK, ensuring gaps and development areas are given assigned action owners.
• Be the official interface of DEx cyber security for UK InfoSec, PCSO, GIMS, Personnel Security and National Cyber Procurement Coordinator.
• Responsible for ensuring that DEx projects are informed of ITHC and pentest requirements prior to acceptance into service in line with policies.
• Responsible for the coordination of any CHECK test or ITHC scoping activity which may impact the SOC.
• Responsible for the creation, review and update of UK SOC documentation and support the delivery of Group policy and frameworks.
• Advise and support the SOC and Vulnerability Management teams on flow management policy, incident response plans and playbooks.
• Work in collaboration with CSC DEx in other Natcos (International Group Companies France, Italy, Germany, Spain etc).

Skillset/experience required:

• Ideally ISO 27001/CE Lead/Auditor DCC Assessor would be ideal if possible.
• Knowledge of SOC functions and operating models.
• Knowledge of Vulnerability management principles.
• Risk management and risk treatment process.
• Audit preparation and evidence gathering.
• Awareness of Incident response processes.
• Security Policy development and implementation.
• Stakeholder management.
• Security awareness of modern cyber threats and defensive practices.
• JSPs and defence security policies / Defence assurance Frameworks (DCC).