Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead a team of SOC Analysts in a dynamic 24/7 environment, driving excellence in security operations.
- Company: Join a leading Managed Security Services Provider focused on innovation and client success.
- Benefits: Competitive salary, professional development, and opportunities for career advancement.
- Other info: Collaborative culture with a focus on continuous improvement and emerging technologies.
- Why this job: Make a real impact in cyber security while mentoring the next generation of analysts.
- Qualifications: 7+ years in Security Operations with strong hands-on experience in SIEM and incident response.
The predicted salary is between 70000 - 90000 £ per year.
We are seeking an experienced and hands-on SOC Operations Technical Lead to lead a team of SOC Analysts operating in a 24/7/365 environment. This is a senior, technically focused leadership role within our Managed Security Services (MSSP) function, reporting directly to the Head of SOC Operations. You will act as the senior technical authority, driving excellence in threat detection, incident response, and security operations across a diverse, multi-client portfolio.
While you will lead and mentor a team, this is not a purely managerial role. You will remain deeply involved in technical delivery, acting as an escalation point, leading complex investigations, and continuously improving SOC capabilities.
Key Responsibilities- Lead day-to-day SOC operations across all shifts, ensuring consistent 24/7 coverage
- Manage shift schedules, handovers, and on-call rotations
- Act as the primary escalation point for security incidents and analyst queries
- Ensure high-quality triage, investigation, and response aligned to SOC processes
- Drive team development through training, coaching, and technical mentoring
- Ensure accurate and timely case management (HALO) and delivery against SLAs
- Provide expert guidance on threat detection, incident response, and threat hunting
- Lead escalations for complex or high-severity incidents across client environments
- Develop and optimise detection rules, playbooks, and automation
- Improve SOC tooling (SIEM, EDR/XDR, SOAR) and operational processes
- Design and maintain advanced detection use cases and correlation logic
- Act as a trusted advisor to clients, supporting security reviews and incident analysis
- Translate technical findings into clear, actionable recommendations
- Support continuous improvement of client security posture
- Work closely with Threat Intelligence, Engineering, and Incident Response teams
- Enhance detection capability through intelligence sharing and tool optimisation
- Align processes to strengthen overall security operations effectiveness
- Identify opportunities to enhance MSSP services and capabilities
- Monitor emerging threats, technologies, and industry trends
- Ensure compliance with regulatory standards and internal frameworks
- ~7+ years in Security Operations, including 3-4 years in a senior/lead SOC role
- ~ Strong hands-on experience with:
- ~ SIEM (e.g. Microsoft Sentinel, CrowdStrike)
- ~ EDR/XDR (e.g. CrowdStrike, Microsoft Defender, Carbon Black)
- ~ SOAR and threat intelligence platforms
- ~ Proven expertise in threat hunting and incident response
- ~ Experience developing and tuning detection rules in multi-tenant environments
- ~ Strong automation skills to improve SOC efficiency
- ~ Excellent client-facing and communication skills
- Certifications such as CISSP, GIAC (GCIH, GCIA, GREM), SC-200 or SC-300
- Experience in cloud security operations
- Background in MSSP or consulting environments
- Familiarity with frameworks such as NIST, ISO27001, or ITIL
- Strong technical depth with the ability to simplify complex concepts
- Excellent analytical and problem-solving skills under pressure
- Confident communicator with strong stakeholder engagement skills
- Collaborative leadership style with a focus on mentoring and development
- Ability to manage multiple priorities in a fast-paced SOC environment
Technical Lead - Cyber Security in Southampton employer: Experis
Contact Detail:
Experis Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Technical Lead - Cyber Security in Southampton
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the cyber security field. Attend meetups, webinars, or industry conferences. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to threat detection or incident response. This gives potential employers a taste of what you can do beyond just a CV.
✨Tip Number 3
Prepare for interviews by brushing up on technical scenarios. Be ready to discuss how you've handled complex incidents or improved SOC processes in the past. We want to see your problem-solving skills in action!
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our team and contributing to our mission in cyber security.
We think you need these skills to ace Technical Lead - Cyber Security in Southampton
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that match the Technical Lead role. Highlight your hands-on experience in SOC operations and any leadership roles you've held. We want to see how you can drive excellence in threat detection and incident response!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your background makes you the perfect fit for our team. Don’t forget to mention specific achievements that demonstrate your technical expertise and leadership skills.
Showcase Your Technical Skills: In your application, be sure to highlight your experience with SIEM, EDR/XDR, and automation tools. We’re looking for someone who can lead complex investigations and improve SOC capabilities, so make those skills pop in your written application!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates. Plus, we love seeing applications come in through our own platform!
How to prepare for a job interview at Experis
✨Know Your Tech Inside Out
Make sure you’re well-versed in the specific technologies mentioned in the job description, like SIEM and EDR/XDR tools. Be ready to discuss your hands-on experience with these systems and how you've used them in past roles.
✨Showcase Your Leadership Skills
Prepare examples of how you've led teams in high-pressure situations. Highlight your mentoring style and how you’ve developed team members' skills, as this role requires both technical expertise and strong leadership.
✨Be Ready for Scenario-Based Questions
Expect to tackle hypothetical security incidents during the interview. Practice articulating your thought process for threat detection and incident response, demonstrating your analytical skills and decision-making under pressure.
✨Engage with Client-Focused Scenarios
Since client engagement is key, think of times when you've translated complex technical findings into actionable recommendations for clients. This will show your ability to communicate effectively and build trust with stakeholders.