Security Operations Level 1 - Team Leader

Company Description

Telefónica Tech (part of the Telefónica Group) is a leading NextGen Tech solutions provider with a highly diversified team of over 6,000 exceptionally skilled employees and +60 nationalities.

We serve more than 5.5m customers every day in over 175 countries, with a global ecosystem of market-leading partners. Global strategic hubs: Spain, Brazil, the UK, Germany.

The Telefónica Tech UK&I hub has an end- to-end portfolio of market leading services and develops integrated technology solutions to accelerate digital transformation through: Cloud, Data & AI (Adatis), Enterprise Applications (Incremental), Workplace Services and Cyber Security & Networking.

Values: Open, Trusted and Bold

Trusted Partners:

• Microsoft: Top 3 Service Providers, Azure Expert Status, Fastrack & Inner Circle Partner
• HPE: Platinum Partner – FY23 UK&I Solution Provider of the Year
• Palo Alto & Crowdstrike: part of our NextDefense Cyber Security Portfolio
• Fortinet: Elite VIP Program – one of only 2 in the UK
• AWS: Advanced Solution & Managed Service Provider Program

Job Description

Due to expansion, we’re now recruiting for a Security Operations Level 1 Team Leader.

As the Security Operations Level 1 Team Leader, you will oversee and manage a team of 12 security analysts within the Security Operations Center (SOC). Your primary responsibility will be to ensure the efficient and effective monitoring, detection, and response to cybersecurity threats. You will play a pivotal role in maintaining the security posture of the organization by leading your team in identifying, analysing, and mitigating potential security incidents.

Key Responsibilities

• Team Management: Lead, mentor, and support a team of 12 L1 SOC analysts, ensuring that they are well-trained, motivated, and equipped to handle security incidents effectively.
• Incident Response Coordination: Oversee the investigation and response to security alerts, ensuring that incidents are escalated and resolved in a timely manner.
• Process Improvement: Develop and refine SOC processes, workflows, and playbooks to enhance the team's efficiency and effectiveness in threat detection and incident response.
• Performance Monitoring: Monitor team performance through KPIs and metrics, providing regular feedback and conducting performance reviews to drive continuous improvement.
• Communication: Act as the primary point of contact between the L1 SOC team and higher-level management, ensuring that critical incidents are reported and communicated appropriately.
• Training and Development: Identify skill gaps and coordinate training sessions to ensure that the team stays up-to-date with the latest cybersecurity trends, tools, and techniques.
• Shift Management: Ensure proper shift coverage and scheduling to maintain 24/7 SOC operations, minimizing downtime and ensuring continuous monitoring.
• Tool Management: Work with security tools and platforms, ensuring that the team effectively utilizes them for threat detection and incident response.

Skills and Experience

• Proven experience in a SOC environment, with a minimum of 3-5 years in cybersecurity.
• Strong leadership skills with prior experience managing or leading a team.
• In-depth knowledge of cybersecurity threats, vulnerabilities, and incident response procedures.
• Familiarity with SOC tools and technologies, such as SIEM, IDS/IPS, EDR, and threat intelligence platforms.
• Excellent communication skills, both written and verbal, with the ability to convey complex technical information to non-technical stakeholders.
• Ability to work under pressure and manage multiple priorities in a fast-paced environment.

Qualifications

Relevant certifications (e.g., CISSP, CISM, CEH) are a plus.

Additional Information

• Must have the right to live and work in the UK, currently based within the UK, and you must have been a UK resident for four out of the last five years.
• Must have full and valid UK driving licence and access to own transport to travel between sites
• Any offer would be conditional upon the successful candidate passing a full DBS national security vetting process
• Compliance to ISO27001, ISO27018, ISO20000, ISO22301 and ISO9001 is essential to our business. Quality, IT Service Management, Business Continuity and Information security awareness, education and training are given regularly.
• SC clearance or DV clearance would be a benefit.

Due to the nature of work carried out by Managed Services, the company run background verification checks in line with the Baseline Personnel Security Standard (BPSS) on potential candidates prior to, and throughout, employment. This is to ensure candidates are suitable for the position they have applied for, taking into consideration the sensitivity of the businesses processes and therefore the trust involved. Managed Services treats all applicants who have a criminal record fairly and do not discriminate unfairly on the basis of conviction or other information revealed.

We don’t believe hiring is a tick box exercise, so if you feel that you don’t match the job description 100%, but would still be a great fit for role, please get in touch.