SOC Manager

As a SOC Manager - Splunk within NCC Groups MXDR SOC, your role is pivotal in ensuring the 24/7 security and resilience of client's enterprise networks. This role focusses around the management of SOC analysts who are direct reports to you as the SOC Manager. Supporting the analysts and ensuring smooth day to day operations of the MXDR SOC are the priorities of this role.
Summary:
Today, it is an unavoidable fact that your business-critical infrastructure and systems are at risk of attack. The key to good security is a clear understanding of what is most critical to the business. Where you do not have enough internal resources, time or skills to monitor and manage your IT environment 24/7, NCC Group can help, freeing up your skilled employees to focus on value-add activity.
NCC Group provide a range of managed and hosted services delivered from our UK based Security Operations Centre SOC which operates 24/7, 365 days a year. Our team of over 30 accredited security experts are available 24/7, dealing daily with over 200 million log events and providing support for over 5,000 network devices.
We are specialists in SIEM, our services backed by our EDGE methodology built up through dozens of major deployments and hundreds of use cases with many of the UK's largest companies.
We provide a single point of contact for all your managed security needs and can work with you to define and achieve you own individual security requirements. Our team of experts provide proactive monitoring and reporting, monitoring your equipment to ensure maximum availability and responding to calls to support change requests and helping diagnose system issues.
Read more about the services offered by the NCC Group Security Operations Centre here:
https://www.nccgroup.trust/uk/our-services/security-consulting/managed-and-hosted-security-services/
Key accountabilities for this role are as follows:

• Lead and oversee a team of Principal & Senior SOC Analysts who specialize in clients that leverage our MXDR Splunk, EDR, MNIA, MIS, IDS/IPS and DDoS services.



• Conduct monthly/half year/yearly performance evaluation and mentorship for Principal & Senior analysts as well as any other direct reports.



• Co-ordinate and implement the ongoing training strategy to ensure analysts at all levels of the SOC are fully supported with technical training.



• Hold accountability for meeting SOC related KPI's for all services under your governance within the MXDR SOC. (capacity, SLAs)



• Occasional support the Head of SOC UK in client engagements remotely or in the Manchester office, as well as occasional on-site visits to clients when necessary.



• Co-ordinate 24/7 shift cover for the MXDR SOC. This includes managing an Out of Hours Rota to ensure the SOC has round the clock coverage for clients.



• Collaborate with the SOC management team on process alignment, onboarding clients and the standardization of operating playbooks.



• Regularly update the Head of SOC on the SOCs activities, performance, and any notable incidents.



• Contribute to strategic decisions on the operation of the global MXDR SOC and the SOC roadmap.



• Hold responsibility for NCC Groups internal "go-live" process for MXDR Splunk and legacy MDR services ensuring all pre-checks have been completed.



• Support ad-hoc audits of the MXDR SOC.


Behaviours:
Working Hours: The working hours are 0900-1730hrs Mon-Fri, and you would be expected to be working and contactable throughout those times. There is no scheduled out of hours work but may be required in emergency situations only.
Professionalism: Conduct yourself with professionalism, integrity, and ethical behaviour in all interactions and situations.
Proactive: Demonstrate a proactive approach to process improvement and process creation, ensuring conformity to the standards of the MXDR SOC.
Collaboration: Work well within a team environment, communicating effectively with colleagues from different departments and sharing insights to improve security posture.
Adaptability: Embrace changes in technology and processes, adapting to new challenges and learning quickly in a dynamic security landscape.
Why NCC Group?
At NCC Group, our mission is to create a more secure digital future. That mission underpins everything we do, from our work with our incredible clients to groundbreaking research shaping our industry. Our teams' partner with clients across a multitude of industries, delving into, securing new products, and emerging technologies, as well as solving complex security problems. As global leaders in cyber and escrow, NCC Group is a people-powered business seeking the next group of brilliant minds to join our ranks.
Our colleagues are our greatest asset, and NCC Group is committed to providing an inclusive and supportive work environment that fosters creativity, collaboration, authenticity, and accountability. We want colleagues to put down roots at NCC Group, and we offer a comprehensive benefits package, as well as opportunities for learning and development and career growth. We believe our people are at their brilliant best when they feel bolstered in all aspects of their well-being, and we offer wellness programs and flexible working arrangements to provide that vital support.
What do we offer in return?
We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits;

• 
  Flexible working
  
  Financial & Investment
  
• Pension


• Life Assurance


• Share Save Scheme


• Maternity & Paternity leave


Community & Volunteering Programmes

• Green Car Scheme


Cycle Scheme
Healthcare
️ Office Lifestyle
Employee Referral Program
Lifestyle & Wellness
Learning & Development
Diversity & Inclusion

We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.
Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process. This role being advertised will be subject to BS7858 screening as a mandatory requirement.