Security Operations Lead (SecOps Lead)
Hybrid – 3 days in London office
The Role
As SecOps Lead, you will act as the main liaison between internal security, engineering, and IT teams, and an external Managed Detection and Response (MDR) partner. You’ll oversee incident management, enhance detection and response processes, and strengthen the company’s overall security posture.
Key Responsibilities
- Serve as the primary contact for the MDR partner, managing the relationship, conducting service reviews, and ensuring SLAs are consistently met.
- Review and fine-tune security alerts with the MDR provider, reducing false positives and improving detection accuracy.
- Develop and monitor MDR performance metrics (KPIs), presenting insights and trends to senior leadership.
- Lead incident response efforts during security events – coordinating across teams to achieve fast containment and recovery.
- Maintain and evolve the security incident response plan (IRP) and playbooks in collaboration with the MDR provider.
- Translate technical security risks into actionable business recommendations for stakeholders at all levels
Requirements
- In-depth understanding of the incident response lifecycle – preparation, detection, containment, eradication, recovery, and lessons learned.
- Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar – including log analysis and data correlation.
- Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black.
- Working knowledge of network security, including protocols, firewalls, IDS/IPS, and traffic analysis.
- Experience with cloud security principles in AWS, Azure, or GCP.
Apply now
* Required
At a glance
Your consultant
