Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and mentor a team of SOC Analysts in a fast-paced environment.
- Company: Join Sopra Steria, a leader in Cyber Security Operations.
- Benefits: Enjoy competitive salary, 25 days leave, health cash plan, and more.
- Other info: Diverse and inclusive workplace with excellent career growth opportunities.
- Why this job: Make a real impact on national security while developing your leadership skills.
- Qualifications: Experience in SOC environments and strong incident handling skills required.
The predicted salary is between 75000 - 75000 £ per year.
Sopra Steria’s SOC is currently seeking SOC Shift Leads to join our Managed Security Service Provider team. This is a great opportunity to take on increased responsibility in a complex, fast-paced environment, leading, mentoring, and developing a team of SOC Analysts. As we expand our Cyber Security Operations capability, we’re looking for a Lead SOC Analyst to help protect multiple critical client environments. The role offers real variety and continued hands‑on involvement, combining leadership with incident response, threat detection, and operational delivery.
You will lead a team of analysts within a 24/7 SOC, acting as the primary escalation point for complex incidents, supporting operational delivery, and helping to mature our detection and response capabilities across multiple clients. This role is site‑based in Hemel Hempstead and follows a shift pattern of two day shifts (6am–6pm), two night shifts (6pm–6am), followed by four days off.
What you’ll be doing:
- Lead and mentor a team of SOC Analysts, providing technical guidance and operational oversight during shifts.
- Act as the primary escalation point for high‑severity security incidents.
- Monitor, triage, and investigate host‑ and network‑based security alerts across critical client infrastructure.
- Conduct in‑depth analysis of logs, alerts, and network traffic to identify malicious activity.
- Contribute to the development and improvement of detection rules and use cases aligned to the MITRE ATT&CK framework.
- Support continuous improvement of SOC processes, tooling, and incident response playbooks.
- Maintain clear and accurate incident documentation, including reports and post‑incident reviews.
- Represent the SOC in operational meetings with internal teams, partners, and stakeholders.
What you will bring:
- Proven experience working in a Security Operations Centre (SOC) environment.
- Experience handling and escalating security incidents across enterprise environments.
- Strong understanding of network and host‑based attack techniques.
- Hands‑on experience with SIEM platforms, ideally Microsoft Sentinel or Splunk.
- Experience leading or mentoring analysts in an operational security environment.
It would be great if you had:
- Experience improving detection content or threat‑informed defense use cases.
- Familiarity with the MITRE ATT&CK framework.
- Scripting or automation experience (e.g. Python, PowerShell, Bash).
- Exposure to malware analysis or reverse engineering (not required for day‑to‑day work).
- Relevant certifications such as CREST Practitioner Intrusion Analyst, Blue Team Level 1, or similar.
If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!
Employment Type: Permanent
Location: Hemel Hempstead
Security Clearance Level: Eligible for DV (Developed Vetting)
Internal Recruiter: Lee
Salary: Up to £75k + on‑call allowance
Benefits: 25 days annual leave with the choice to buy additional holiday days, health cash plan, life assurance, and pension.
SOC Shift Lead in England employer: Sopra Steria
Contact Detail:
Sopra Steria Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land SOC Shift Lead in England
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, especially those who work at Sopra Steria. A friendly chat can sometimes lead to insider info about job openings or even a referral.
✨Tip Number 2
Prepare for the interview by brushing up on your technical skills and leadership experience. Be ready to discuss how you've handled high-severity incidents and mentored others in a SOC environment. We want to see your passion for cybersecurity!
✨Tip Number 3
Showcase your problem-solving skills during interviews. Use real-life examples of how you triaged security alerts or improved detection processes. This will help us see how you think on your feet in a fast-paced environment.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our team at Sopra Steria.
We think you need these skills to ace SOC Shift Lead in England
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in a SOC environment. We want to see how your skills align with the responsibilities of leading a team and handling security incidents.
Show Off Your Technical Skills: Don’t hold back on showcasing your hands-on experience with SIEM platforms like Microsoft Sentinel or Splunk. We’re keen to know about your technical expertise, especially in threat detection and incident response.
Be Clear and Concise: When writing your application, keep it straightforward. Use bullet points for key achievements and make sure your documentation is clear. We appreciate well-organised applications that are easy to read!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from our team.
How to prepare for a job interview at Sopra Steria
✨Know Your Stuff
Make sure you brush up on your knowledge of SOC operations, especially around incident response and threat detection. Familiarise yourself with the MITRE ATT&CK framework and be ready to discuss how you've applied it in past roles.
✨Show Your Leadership Skills
As a SOC Shift Lead, you'll be mentoring analysts. Prepare examples of how you've led teams or handled escalations in high-pressure situations. Highlight your ability to guide others while remaining technically engaged.
✨Be Ready for Technical Questions
Expect questions about your experience with SIEM platforms like Microsoft Sentinel or Splunk. Be prepared to discuss specific incidents you've managed and the tools you used to analyse and respond to threats.
✨Ask Insightful Questions
At the end of the interview, ask questions that show your interest in the role and the company. Inquire about their approach to continuous improvement in SOC processes or how they support professional development for their team members.