About this role
Job Title: Lead Consultant – Cyber SOC Operations
Grade: E
Introduction to role
A SOC (Security Operations Center) Engineer designs, manages, and maintains security tools (like SIEM, EDR), monitors for threats, responds to Global incidents (investigating, containing, remediating), develops detection rules, automates processes, and works to improve overall security posture, often mentoring junior analysts and collaborating with other teams to protect an organization's digital assets from cyber threats.
Accountabilities
Investigate security incidents using logs, endpoint telemetry, and network traffic
Contain incidents (account isolation, endpoint quarantine, IP blocking, etc.)
Advance incidents based on severity, impact, and SLAs
Analyze indicators of compromise (IOCs) and attack patterns
Perform root cause analysis (RCA) and timeline reconstruction
Correlate events across multiple tools and data sources
Implement response actions using SOAR playbooks
Assist in playbook tuning and automation improvement
Document incidents clearly with evidence and actions taken
Maintain runbooks, SOPs, and incident response documentation
Essential Skills/Experience
Bachelor’s degree or equivalent in Computer Engineering, Computer Science, or a related field
Overall 10+ years of experience in Cybersecurity SOC Operations
Participate in shift handovers with accuracy and completeness
Demonstrate ownership, accountability, and a problem-solving mindset.
Good communication and interpersonal skills
Demonstrable experience of managing and coaching/mentoring junior engineers
Demonstrable experience of developing and managing relationships with 3rd party suppliers
Strong written and verbal communications skills
Experience working in a global organization with a complex geographical structure.
At AstraZeneca, our work has a direct impact on patients by transforming our ability to develop life-changing medicines. We empower the business to perform at its peak by combining modern science with leading digital technology platforms. With a passion for impacting lives through data, analytics, AI, machine learning, and more, we are committed to driving cross-company change to disrupt the entire industry. Join us at a crucial stage of our journey in becoming a digital and data-led enterprise.
Date Posted
29-Jan-2026Closing Date
AstraZeneca embraces diversity and equality of opportunity. We are committed to building an inclusive and diverse team representing all backgrounds, with as wide a range of perspectives as possible, and harnessing industry-leading skills. We believe that the more inclusive we are, the better our work will be. We welcome and consider applications to join our team from all qualified candidates, regardless of their characteristics. We comply with all applicable laws and regulations on non-discrimination in employment (and recruitment), as well as work authorization and employment eligibility verification requirements.
Other facts
About AstraZeneca
We're transforming the future of healthcare by unlocking the power of what science can do for people, society and the planet. For more information, visit www.astrazeneca.com.
Community Guidelines: bit.ly/2MgAcio
What you'll do
- The Lead Consultant will investigate security incidents, contain them, and analyze indicators of compromise. They will also develop detection rules and automate processes to improve the security posture.
Ready to join AstraZeneca?
Take the next step in your career journey