Start Hiring Start Applying
Start Applying

StudySmarter Job Board

Security Operations Manager
Job Board
Companies
Barclay Simpson
Security Operations Manager

Security Operations Manager

London Full-Time 72000 - 108000 Β£ / year (est.) No home office possible
Go Premium
B

At a Glance

  • Tasks: Lead and mentor a SOC team, manage incident response, and enhance cloud security.
  • Company: Join a rapidly growing FinTech company focused on innovative cloud security solutions.
  • Benefits: Enjoy a flexible, remote-first culture with opportunities for global collaboration.
  • Why this job: Make a real impact by shaping cybersecurity strategy in a cutting-edge fintech environment.
  • Qualifications: Experience in SOC leadership and securing GCP environments is essential.
  • Other info: Opportunity to build a security function from scratch and automate processes.

The predicted salary is between 72000 - 108000 Β£ per year.

Rapidly growing FinTech company seeking an accomplished Cybersecurity Operations Manager to take full ownership of its cloud-first security operations function. This is a high-impact, hands-on leadership role with end-to-end responsibility for managing the Security Operations Centre (SOC), incident detection and response, threat intelligence, and cloud-native security engineering with a strong focus on Google Cloud Platform (GCP). Operating in a highly regulated, Real Time financial services environment, this role requires deep technical knowledge, operational maturity, and experience applying security best practices across a fast-moving cloud infrastructure.

What You'll Do

  • SOC Leadership & Threat Detection
    • Lead and mentor a team of SOC analysts and engineers, ensuring high-quality coverage across all GCP workloads.
    • Establish and maintain 24/7 detection and response capabilities, fine-tuning alerting rules and monitoring strategies.
    • Deploy and maintain detection rules using Chronicle SIEM, YARA, Sigma, and GCP-native logging tools.
    • Define and maintain runbooks, incident playbooks, and escalation procedures.
  • Incident Response & Threat Intelligence
    • Own the full life cycle of security incidents from detection to remediation and post-incident review.
    • Perform advanced threat hunting and root cause analysis across cloud workloads, Kubernetes clusters, APIs, and user activity.
    • Integrate external threat intelligence feeds, aligning TTPs with the MITRE ATT&CK framework.
    • Drive continuous improvement by conducting regular purple team exercises and scenario-based tabletop tests.
  • Cloud Security Engineering
    • Work hands-on with GCP security controls, including: Security Command Center, VPC Service Controls, IAM (Identity & Access Management), Cloud Logging and Monitoring, Workload Identity Federation.
    • Automate security response using Python, Terraform, or XSOAR.
    • Collaborate with infrastructure and DevOps teams to embed security into CI/CD pipelines, containers (GKE), and API services.
  • Compliance & Risk Alignment
    • Ensure operational alignment with PCI-DSS, ISO 27001, SOC 2, NIST, and GDPR requirements.
    • Support internal and external audits with relevant security evidence and reports.
    • Work closely with GRC teams to implement controls and technical safeguards for ongoing compliance.

Who You Are

A cybersecurity professional who thrives in high-velocity, cloud-native, and heavily regulated environments. You’re both a strategist and a practitioner: able to lead people and projects, while staying hands-on with modern tools and incident response workflows. You bring both technical acumen and operational discipline, with a deep understanding of GCP security and experience protecting high-value fintech applications.

Essential Qualifications

  • Experience as SOC lead, cyber operations manager, or similar role.
  • Hands-on experience in securing Google Cloud Platform (GCP) environments across multiple projects/accounts.
  • Strong expertise in: SIEM management (Chronicle, Splunk, Elastic), Incident response and recovery, Security orchestration (SOAR), preferably Chronicle + XSOAR, IAM, policy enforcement, logging, and access reviews in GCP.
  • Proven experience working in FinTech or financial services, ideally under PCI-DSS, ISO 27001, or SOC 2.
  • Strong scripting or automation experience (Python, Terraform, Bash).
  • Knowledge of threat modelling and attack frameworks (MITRE ATT&CK, Kill Chain).
  • Familiarity with Kubernetes (GKE), container security, API hardening.

Nice to Have

  • Certifications such as: Google Professional Cloud Security Engineer, CISSP, CISM, GCIH, or GCIA.
  • Experience implementing Zero Trust Architecture in a cloud-native environment.
  • Familiarity with OPA/Gatekeeper, Kubernetes Admission Controllers.
  • Background in red teaming or adversary simulation (MITRE Caldera, Atomic Red Team).
  • Experience working with BigQuery, Data Loss Prevention (DLP) tools, and Key Management Systems (KMS).

Why This Role?

Work directly with engineering, DevSecOps, and compliance leadership. Lead cybersecurity strategy and execution in a cloud-native, greenfield fintech platform. Influence architecture decisions at scale while keeping a hands-on role. Flexible, remote-first working culture with global talent. A chance to build a security function from the ground up, automate deeply, and scale securely.

B

Contact Detail:

Barclay Simpson Recruiting Team

View Barclay Simpson Profile

StudySmarter Expert Advice 🀫

We think this is how you could land Security Operations Manager

✨Tip Number 1

Familiarise yourself with Google Cloud Platform (GCP) security features and tools. Since this role heavily focuses on GCP, having hands-on experience and understanding of its security controls will set you apart from other candidates.

✨Tip Number 2

Showcase your leadership skills by discussing any previous experience leading a team in a SOC environment. Highlight how you mentored team members and improved incident response processes, as this is crucial for the role.

✨Tip Number 3

Prepare to discuss your experience with compliance frameworks like PCI-DSS, ISO 27001, and SOC 2. Being able to articulate how you've ensured compliance in past roles will demonstrate your fit for this highly regulated position.

✨Tip Number 4

Engage with the cybersecurity community, especially around threat intelligence and incident response. Networking with professionals in the field can provide insights and potentially lead to referrals, increasing your chances of landing the job.

We think you need these skills to ace Security Operations Manager

Leadership Skills
Incident Detection and Response
Threat Intelligence Integration
Cloud Security Engineering
Google Cloud Platform (GCP) Security
SIEM Management (Chronicle, Splunk, Elastic)
Security Orchestration (SOAR)
Identity and Access Management (IAM)
Automation Scripting (Python, Terraform, Bash)
Threat Modelling and Attack Frameworks (MITRE ATT&CK)
Kubernetes Security
Compliance Knowledge (PCI-DSS, ISO 27001, SOC 2)
Operational Alignment with Regulatory Standards
Root Cause Analysis
Continuous Improvement Practices

Some tips for your application 🫑

Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity operations, particularly with Google Cloud Platform (GCP). Emphasise your leadership roles and any hands-on experience with SOC management and incident response.

Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and your understanding of the fintech landscape. Mention specific projects or achievements that demonstrate your ability to lead teams and manage security operations effectively.

Showcase Technical Skills: Clearly outline your technical skills related to SIEM management, security orchestration, and cloud security engineering. Use specific examples to illustrate your expertise in tools like Chronicle SIEM, Terraform, and Python.

Highlight Compliance Knowledge: Since the role requires knowledge of compliance frameworks, make sure to mention your experience with PCI-DSS, ISO 27001, or SOC 2. Discuss how you've implemented security controls and supported audits in previous roles.

How to prepare for a job interview at Barclay Simpson

✨Showcase Your Technical Expertise

Be prepared to discuss your hands-on experience with Google Cloud Platform (GCP) security controls. Highlight specific projects where you've implemented security measures, and be ready to explain the tools you used, such as Chronicle SIEM or Terraform.

✨Demonstrate Leadership Skills

As a Security Operations Manager, you'll need to lead a team. Share examples of how you've mentored SOC analysts or engineers in the past, and discuss your approach to establishing a 24/7 detection and response capability.

✨Prepare for Scenario-Based Questions

Expect questions that assess your incident response capabilities. Be ready to walk through a past incident you managed, detailing your thought process from detection to remediation, and how you integrated threat intelligence into your response.

✨Align with Compliance Standards

Familiarise yourself with compliance frameworks like PCI-DSS, ISO 27001, and SOC 2. Be prepared to discuss how you've ensured operational alignment with these standards in previous roles, and how you would support audits with relevant security evidence.

Security Operations Manager
Barclay Simpson
Location: London
Go Premium

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

B
Similar positions in other companies
UK’s top job board for Gen Z
discover-jobs-cta
Discover now
>