Soc Manager - Hybrid

The Vacancy

SOC Manager 

Salary: £81,000

We also offer 26 days of annual leave, 9%+  pension contributions, private medical and dental insurance and 6 months paid maternity/paternity/shared parental leave.

Location: Aldgate East, London. We are a hybrid workforce and spend 40% of our time in the office.

Hours:  We offer other flexible work options, such as compressed hours.

The role:

• The role of a SOC Manager is pivotal in safeguarding FSCS’s organisation's digital assets and infrastructure from cybersecurity threats. By providing strategic leadership, technical expertise, and operational oversight, the SOC Manager plays a critical role in maintaining an effective security posture and mitigating risks to the organisation's information assets. 
• The key disciplines within the role are: 

Security Monitoring and Analysis – Manage the monitoring of security alerts and events to identify potential threats. 

Incident Response -Execute and manage the incident response procedures to contain, eradicate, and recover from security incidents. Ability to co-ordinate and handle out of hours incidents. 

Threat Intelligence -Stay informed about the latest cybersecurity threats, vulnerabilities, and attack vectors. 

Vulnerability Management – Monitor, identify and assess vulnerabilities in the organisation's systems and networks. 

Job description:

• Act as the subject matter expert in all things SOC for FSCS
• Manage the external SOC team and small internal team.
• Review output created by the external SOC team and ensure we are receiving everything required
• Set clear goals and objectives for the SOC team and ensure alignment with organisational security objectives.
• Provide guidance, support, and training to enhance the skills and capabilities of SOC personnel.
• Conduct performance evaluations and facilitate professional development opportunities for team members.
• Oversee the detection, analysis, and response to security incidents and breaches.
• Coordinate incident response efforts, including containment, eradication, and recovery activities.
• Ensure timely communication and collaboration with relevant stakeholders during incident response activities. Out of hours work may be required at times.
• Conduct post-incident reviews and implement corrective actions to prevent recurrence.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and trends.
• Implement and maintain threat intelligence feeds and tools to enhance detection capabilities.
• Monitor security alerts, logs, and indicators of compromise (IOCs) for signs of malicious activity.
• Develop and refine SOC procedures and playbooks based on emerging threats and attack patterns.
• Manage and optimise security tools and technologies deployed within the SOC environment.
• Evaluate new security solutions and technologies to enhance threat detection and response capabilities.
• Ensure proper configuration, tuning, and maintenance of security monitoring and analysis tools.
• Collaborate with IT and security teams to integrate security controls and automate workflow processes.
• Prepare and deliver regular reports on security incidents, trends, and metrics to senior management.
• Maintain accurate documentation of incident response activities, including timelines, actions taken, and lessons learned.
• Ensure compliance with regulatory requirements and industry standards for incident reporting and documentation.
• Identify opportunities to enhance SOC operations through process improvements and technology enhancements.
• Drive initiatives to optimise incident detection and response capabilities, including automation and orchestration.
• Foster a culture of innovation and knowledge sharing within the SOC team and across the organisation.
• Working out of hours may be required from time to time.

Person specification

• Experience managing a third-party vendor SOC provider.
• Proven experience in security operations, incident response, and threat management. 
• Experience of automating SOC rules to increase security posture of inside and external threat monitoring.
• Strong leadership and managerial skills, with the ability to motivate and inspire a team.
• In-depth knowledge of security technologies, tools, and methodologies used in SOC environments.
• Familiarity with industry frameworks and standards such as NIST, ISO 27001, and CIS Controls.
• Excellent analytical, problem-solving, and communication skills.
• Strong working experience of Sentinel.
• Relevant certifications such as CISSP, CISM, GIAC, or equivalent are preferred.
• Cyber security/Computer science university degree is ideal
• Experience with writing and socialising SOC policies, standards, and procedures
• Strong understanding of information security concepts such as security architecture and design, Information security standards and information security risk assessment.
• Proven understanding of business continuity and compliance and audit frameworks

We are happy to consider any reasonable adjustments that candidates may need during the recruitment process, and you will be asked whether you require any during your application.

About Us

For the past 21 years, FSCS has been getting customers of failed authorised financial services firms back on track.

Our strength is in our numbers. Since 2001, we have helped 6.5m customers and paid back £26bn in compensation. Over the years we have continually strived to be better, faster, and more empathetic to our customers’ needs in an ever more complex financial world. Our people have worked together to make sure we can offer protection and reassurance every step of the way, even during the toughest of times over the last two years. FSCS is an organisation that makes a difference, and in which our people truly make a difference.

We have grown from modest beginnings in 2001 to helping customers during historic events such as the 2008 banking crisis and supporting vulnerable customers during the pandemic. As a result of this success, FSCS has become increasingly respected, insightful, and influential in the regulatory eco-system. It is an exciting time in our journey as we now have an opportunity to play a bigger role in breaking the cycle of rising consumer harm and costs; by being part of a system that is about prevention rather than cure.