SOC Team Lead Location: This position is ideally in Leeds/Hybrid
slow rotating shift pattern that uses 4 teams and two 12-hour shifts to provide 24/7 coverage.
Every 4 weeks, it will change from the day to the night shift.
BlueVoyant is looking for Security Operations Center (SOC) Team Lead to help our global customers manage their IT security.
You will be part of a fast-paced team that helps customers to reduce the impact of security incidents and ensures that critical business operations continue unhindered.
As a technical expert and defensive strategist, you'll be instrumental in guiding analysts through active intrusions, aiding clients in taking action, and building a culture of client-first detection and response.
Your visibility over incoming alerts allows you to spot trends, prioritize analysis work, and define the gold standard of analyst work.
As a Team Lead, you'll directly supervise analysts on your shift, providing mentorship, workflow assistance, quality and performance reviews, and provide excellent customer service.
Supervise and mentor Security Analysts during a standard working team/shift which includes scheduling, PTO, and working with peers to ensure adequate coverage
Supervise operations in deterring, identifying, monitoring, investigating, and analyzing attacks
Provide quality control and feedback for analyst investigations
Perform triage of incoming issues (assess the priority, determine risk)
Able and willing to work in a 24/7/365 environment, including nights and weekends, on a rotating shift schedule
Experience managing technical individual contributors, including providing feedback, monitoring quality, and prioritizing work
Strong customer communications skills, including articulating complex or urgent technical data and scenarios to non-technical audiences
Knowledge of and experience with intrusion detection/prevention systems and SIEM software
Advanced knowledge and understanding of network protocols and devices.
Advanced experience with Mac OS, Windows, and Unix systems.
Advanced written and verbal communication skills and the ability to present complex technical topics in clear and easy-to-understand language
Enterprise Cloud Solutions (Azure, GCP, AWS)
Packet Analysis
Malware Detection, to include dynamic and light static analysis
Network Monitoring metadata (web logs, firewall logs, WAF/IDS)
Experience in network/host vulnerability analysis, intrusion analysis, digital forensics, penetration testing, or related areas
~CISSP, Security +, Network +, CEH, RHCA, RHCE, MCSA, MCP, or MCSE preferred
~ Familiarity with technologies such as Sentinel, Splunk, Microsoft Defender suites, Crowdstrike Falcon, SentinelOne
~ Familiarity with Group Policy, Intune, Virtualization, and other IT Infrastructure tools
~ Understanding and/or experience with one or more of the following programming languages: JavaScript, Python, Lua, Ruby, GoLang, Rust
Minimum bachelor's degree in Information Security, Computer Science, or other IT-related field or equivalent experience
Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem.
Led by CEO, Jim Rosenthal, BlueVoyant's highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts.
BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics.
In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.