Security Operations Manager

Location: London: Hybrid (3 days onsite)

Some organisations defend systems. Others defend something bigger.

This is an opportunity to join an insurance company where security sits at the heart of a complex, high-stakes environment. It’s not just about alerts, it’s about making decisions that directly shape resilience.

We’re looking for a Security Operations Manager who combines technical depth with leadership and can operate confidently in real-world threat scenarios.

The Opportunity

You’ll take ownership of a maturing SOC and push it forward. This is a hands‑on leadership role – guiding a high level team, improving processes and stepping into incidents when it matters most.

The CISO wants someone from a regulated environment such as insurance, banking, gambling or financial services, and understands how to balance risk, compliance, and operational security.

What You’ll Be Doing

• Lead and develop SOC analysts while acting as a technical escalation point
• Own incident response end-to-end
• Stay close to the tech – EDR, SIEM, email security (e.g. CrowdStrike, QRadar, Mimecast or similar)
• Work closely with third‑party providers / MSSPs
• Apply MITRE ATT&CK and TTP knowledge to strengthen detection and response
• Drive improvements across identity, network security and data protection
• Engage stakeholders and translate security into business impact
• Knowledge and experience utilising AI and how it affects Sec Ops

Non-Negotiables

• Experience leading within a SOC or Security Operations environment
• Background in a regulated industry
• Strong knowledge of SIEM, EDR, and broader security tooling
• Experience managing third parties
• Solid understanding of threat landscapes, TTPs and MITRE ATT&CK
• Ability to stay hands‑on while thinking strategically

Why This Role

You’ll step into a high-performing team and have the autonomy to shape what comes next. This isn’t about maintaining a SOC – it’s about evolving it.