Location: London: Hybrid (3 days onsite)
Some organisations defend systems. Others defend something bigger.
This is an opportunity to join an insurance company where security sits at the heart of a complex, high-stakes environment. It’s not just about alerts, it’s about making decisions that directly shape resilience.
We’re looking for a Security Operations Manager who combines technical depth with leadership and can operate confidently in real-world threat scenarios.
The Opportunity
You’ll take ownership of a maturing SOC and push it forward. This is a hands‑on leadership role - guiding a high level team, improving processes and stepping into incidents when it matters most.
The CISO wants someone from a regulated environment such as insurance, banking, gambling or financial services, and understands how to balance risk, compliance, and operational security.
What You’ll Be Doing
* Lead and develop SOC analysts while acting as a technical escalation point
* Own incident response end-to-end
* Stay close to the tech - EDR, SIEM, email security (e.g. CrowdStrike, QRadar, Mimecast or similar)
* Work closely with third‑party providers / MSSPs
* Apply MITRE ATT&CK and TTP knowledge to strengthen detection and response
* Drive improvements across identity, network security and data protection
* Engage stakeholders and translate security into business impact
* Knowledge and experience utilising AI and how it affects Sec Ops
Non-Negotiables
* Experience leading within a SOC or Security Operations environment
* Background in a regulated industry
* Strong knowledge of SIEM, EDR, and broader security tooling
* Experience managing third parties
* Solid understanding of threat landscapes, TTPs and MITRE ATT&CK
* Ability to stay hands‑on while thinking strategically
Why This Role
You’ll step into a high-performing team and have the autonomy to shape what comes next. This isn’t about maintaining a SOC - it’s about evolving it.
#J-18808-Ljbffr