Key skills
AWSAzureCloudPythonSplunkSQLSwitchingTCP/IPShellLeadershipCommunicationCloud Security
About this role
Role Overview
- Lead investigations into complex security incidents across multiple domains
- Act as a senior escalation point within the SOC
- Manage P1 & P2 incidents, including post-incident reviews and lessons learned
- Perform event triage, analysis, and response to security alerts
- Lead engagements with MSSPs and security vendors
- Validate escalations, challenge assumptions, and ensure high-quality outputs
- Collaborate with infrastructure, engineering, and product teams to drive remediation
- Communicate clearly with stakeholders, including senior leadership
- Develop and deliver a continuous SOC improvement roadmap
- Create and refine playbooks and incident response processes
- Tune detection rules and improve SIEM performance (Splunk)
- Enhance automation to reduce false positives and improve efficiency
- Identify monitoring gaps and align detection with emerging threats
- Support threat hunting and purple team initiatives
- Mentor and support SOC analysts, embedding best practices
- Contribute to capability uplift and skills development across the team
- Act as delegate for the Head of UK Security when required
- Support security awareness initiatives across UK business units
Requirements
- Solid experience in Security Operations or Security Services delivery within a Tech Business (FinTech ideal)
- Proven experience in incident response and investigation
- Experience leading or contributing to SOC improvement initiatives
- Hands-on experience with SIEM platforms (e.g. Splunk)
- Exposure to cloud environments (AWS and/or Azure)
- Strong understanding of incident response lifecycle
- Endpoint security, DLP, and cloud security
- Network fundamentals (TCP/IP, routing, switching)
- System logging and log analysis
- Ability to interpret SIEM data and provide meaningful insights
- Working knowledge of scripting/programming (Python, Shell, SQL)
- Familiarity with frameworks such as MITRE ATT&CK
- Strong analytical and problem-solving skills
- Excellent written and verbal communication, including executive-level engagement
- Ability to work autonomously and manage multiple priorities
- High attention to detail with a proactive, investigative mindset
- Collaborative approach with the confidence to challenge constructively
Tech Stack
- AWS
- Azure
- Cloud
- Python
- Splunk
- SQL
- Switching
- TCP/IP
Benefits
- Wellness programs
- Professional development