SOC Manager (Cyber Security Operations Manager) - Central Government

About The Role

Role: SOC Manager (Cyber Security Operations Manager) REF 101420. Contract Length: 6 months. Location: Remote – Possibly some travel if business requires it. IR35: Inside. Pay Rate to Intermediary: Market Rate. Security Clearance: SC requested.

Spinwell is recruiting for an SOC Manager (Cyber Security Operations Manager) for an excellent opportunity within the public sector.

Responsibilities of the SOC Manager (Cyber Security Operations Manager)

• Team Leadership and Development: Lead, manage and mentor a team of cyber security analysts to ensure the team operate effectively. Develop the team utilising the career framework to identify learning needs and career pathways.
• Incident Management: Lead incident detection, triage, escalation and resolution processes; assessing impacts and directing appropriate measures to contain and mitigate threats, conduct post‑incident reviews and drive continual service improvement including exercising to test procedures.
• Security Monitoring: Be the escalation point for alerts. Provide direction for improvements to monitoring systems for our environment covering specific technologies or threats. Direct the development and tuning of new and existing rules.
• Threat Intelligence: Stay up to date on the latest cyber threats and attack techniques, incorporating threat intelligence into security practices, cascading to relevant stakeholders.
• Reporting and Metrics: Define cyber security metrics and targets. Prepare and present regular reports on security incidents and trends to management, translating technical metrics into business‑focused risk insights.
• Vendor & Stakeholder Management: Oversee service providers, managing Service Level Agreements (SLAs) and Key Performance Indicators (KPIs), serve as the principal interface with cross‑government departmental SOCs.
• Budget Management: Support the management of the department budget to ensure optimal allocation of resources to meet security objectives.

Skills / Experience of the SOC Manager (Cyber Security Operations Manager)

• Team Leadership Experience: Demonstrated ability to lead and manage a team, this includes decision‑making, effective communication and service management skills.
• Incident Management: In‑depth knowledge of incident management processes, including the ability to assess the impact of critical security incidents and lead the response efforts, ensuring procedures are available and maintained.
• Security Monitoring: Proven experience delivering an effective security monitoring capability, with continuous improvements that reflect changes from risks and threats in a timely manner, including proactive threat hunting and intrusion detection.
• Threat Intelligence: Proven experience delivering threat intelligence and assessment in the context of the organisation to stakeholders by gathering and analysing information to identify and mitigate cyber threats from both open‑source (OSINT) and commercial threat intelligence.
• Cyber Security Operations: Proven experience operating cyber security solutions and tools such as Security Information and Event Management (SIEM), maintaining security records and documentation in accordance with security operating procedures.
• Vendor & Stakeholder Management: Demonstrated experience in managing relationships with external vendors, managed security service providers (MSSPs), and technology partners, ensuring contractual obligations, service level agreements (SLAs) and performance metrics are consistently met or exceeded.

We welcome all applications regardless of background, in line with our commitment to diversity, equality and inclusion.

Disability Confident

As a member of the disability confident scheme, the client guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group.

Armed Forces Covenant

The client is proud to support the Armed Forces Covenant and as such, we guarantee to interview all veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex‑military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group.

Should you require reasonable adjustments at any point during the recruitment process or if there is a more accessible way for us to communicate, please do let us know.