SOC Shift Lead

hackajob is collaborating with Accenture to connect them with exceptional professionals for this role.

Role: SOC Shift Lead - London

Location: London

Salary: Competitive salary and package dependent on experience

Career Level: Associate Manager

Please Note: Any offer of employment is subject to satisfactory BPSS and the candidate being granted a level of security clearance which typically requires 10 years continuous UK address history, usually including no periods of 30 consecutive days or more spent outside of the UK, and a declaration of being a British passport holder with no dual nationalism at the point of application.

Note: The above information relates to a specific client requirement

SOC Shift Lead - London provides advanced investigation and analysis, acting as the escalation point for complex or high‑severity incidents. They conduct root cause analysis, guide L1 analysts, and support incident containment and remediation efforts.

Accenture is partnering with scaled UK AI compute pioneers to lead the charge on next‑generation infrastructure for sovereign AI. To support this endeavour, we’re building a high‑performance compute operations team in London.

Our work will be sensitive, secure, 24x7 and on the most up‑to‑date high density compute stacks available. Shift teams will be set up and operate 24x7 and successful candidates working on shift will be paid a shift premium for the non‑standard unsociable shift hours that will be part of that rota.

• Investigate escalated incidents to determine attack vectors, scope, and potential impact.
• Correlate events across multiple data sources to build a comprehensive incident narrative.
• Execute containment, eradication, and recovery activities in coordination with IT/OT stakeholders.
• Lead response for medium to high‑severity incidents and document detailed investigation reports.
• Conduct tuning of detection rules and thresholds in collaboration with the Security Content Engineer.
• Support continuous improvement by identifying gaps in detection coverage and playbooks.
• Mentor and provide technical guidance to L1 Analysts.
• Participate in periodic SOC exercises and simulated incident response drills.
• Be part of 24/7 SOC Team and need to work in shifts. As a shift lead you will be responsible for handling escalations of the Technology Operations Centre in that particular shift and be accountable in the absence of a SOC manager or NOC lead.

• Education:
  
  Bachelor's degree in Cybersecurity, Computer Science, or related field.
• Experience:
  
  7‑10 years in SOC, Incident Response, or Threat Analysis roles.
• Certifications (preferred): GCIA, GCIH, CompTIA CySA+, Microsoft SC‑200, or Splunk Certified Power User.

• Strong analytical mindset, in-depth knowledge of SIEM/EDR tools, malware behavior, and incident handling methodologies.