Enable job alerts via email!
Lead Security Operations Engineer (SOC) - Ofsted - SEO
Government Digital and Data
East Midlands, West Midlands Combined Authority, London
Hybrid
GBP 50,000 - 70,000
Full time
Boost your interview chances
Job summary
A leading government organization is seeking a Lead Security Operations Engineer to oversee its Security Operations Centre. This role involves managing cyber security incidents, monitoring technology environments, and leading a team to enhance security posture. The position offers a supportive work culture with flexible working hours and a comprehensive benefits package.
Benefits
Qualifications
- Minimum of 5 years’ experience in IT with a focus on infrastructure and networks.
- Strong hands-on experience in a SOC environment.
- Experience managing security incidents and using Microsoft Azure Sentinel.
Responsibilities
- Manage day-to-day operations of the Security Operations Centre (SOC).
- Lead identification and response to cyber security incidents.
- Monitor technology and information estate for incursions.
Skills
Education
Tools
Job description
We are hiring aLead Security Operations Engineer – Security Operations Centre (SOC) to join our Technology Team.
Reporting to the Principal Cloud and Security Operations Engineer, the postholder will be responsible for the day-to-day management of Ofsted’s Security Operation Centre (SOC).
The successful candidate will monitor the organisations technology and information estate, whilst containing, mitigating and remediating any incursions. Additionally, they will lead the identification, analysis and response to all cyber security incidents within Ofsted, undertake threat hunting and maintain incident response processes.
This is a fantastic opportunity to further your experience in Ofsted’s well-established team. The post holder will work with high-achieving professionals at all levels, surrounded by a friendly and supportive team. They will have access to amazing benefits, such as flexible working hours, the Civil Service Pension Scheme, and 32.5 days annual leave + 8 bank holidays. We offer a hybrid working model, so you may also choose to spend a proportion of time working from home.
Job description
Please refer to the job specification for further information.
Person specification
Please refer to the job specification for further information.
Qualifications
Security-related certifications (e.g., CompTIA Security+, SSCP, CEH, CISSP) or a minimum of 5 years’ experience in IT, with a strong emphasis on infrastructure, networks, and cyber security operations.
Behaviours
We'll assess you against these behaviours during the selection process:
Delivering at Pace
Making Effective Decisions
Managing a Quality Service
Communicating and Influencing
Technical skills
We'll assess you against these technical skills during the selection process:
Knowledge and strong hands-on experience working in a SOC environment using Microsoft Azure Sentinel to monitor, triage, and respond to security alerts and incidents.
Experience building and maintaining use cases, analytic rules, and automated playbooks in Sentinel.
Proven experience in triaging alerts, managing security incidents, and escalating issues appropriately in a structured SOC environment.
Strong analytical and problem-solving skills.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
