Security operations lead

Remote with occasional travel to Bath/London/Edinburgh once a quarter.

About us

Seccl is the Octopus-owned embedded investment platform that’s on a mission to help more people to invest – and invest well. We’re B-Corp certified with an amazing product-market fit, impressive early traction and the potential to transform an outdated industry, for the better. We’ve been growing fast and will scale even faster over the next few years. We’re also proud to be part of Octopus, the £multi billion group that’s on a mission to breathe new life into broken industries, through companies like Octopus Energy, Octopus Investments and Octopus Money.

The role

We’re looking for a Security operations lead to join our Infrastructure and Security team at Seccl. Reporting to the Director of engineering and security, you’ll work closely with IT, infrastructure and application teams, as well as an external security operations partner. This is an exciting opportunity to play a key role in strengthening and evolving our security operations as the business continues to grow. You’ll have ownership of day-to-day security operations, incident response, and continuous improvement of our security capabilities to help protect Seccl and our customers.

The Infrastructure and Security team sits at the heart of Seccl’s technology organisation, ensuring the resilience, availability and security of our platform that underpins everything we do. The team’s mission is to enable the business to scale securely by embedding strong security controls, rapid threat detection and effective incident response into our day-to-day operations. With ongoing investment in cloud security, SIEM maturity and vulnerability management, the team is driving several key initiatives to continuously raise Seccl’s security posture.

You’ll be joining a collaborative, forward-thinking team that plays a critical role in protecting our customers, partners and the wider business.

On a typical day you will be…

• Overseeing day-to-day security operations, ensuring effective detection, investigation and response to security events.
• Managing and tuning the SIEM platform to improve alert quality, coverage and operational effectiveness.
• Working with an outsourced security operations partner to triage alerts and coordinate incident response.
• Leading vulnerability management activities, prioritising remediation based on risk.
• Collaborating with infrastructure, IT and application teams to embed effective security controls.
• Integrating threat intelligence into detection and response workflows.
• Monitoring and reporting on security metrics, incidents and trends to key stakeholders.

This role’s for you if you...

• Have proven experience leading or managing security operations in a cloud-first environment, ideally AWS.
• Are confident operating and improving a SIEM platform, with hands-on experience of tuning, rules and integrations.
• Have experience working with outsourced SOC or security partners and managing alert triage and escalation.
• Understand the full vulnerability management lifecycle and can prioritise remediation based on risk.
• Have strong incident response skills and are comfortable leading investigations and post-incident reviews.
• Can communicate clearly with both technical and non-technical stakeholders across the business.
• Have experience with Microsoft Sentinel and Microsoft Defender security tools is desirable.

This role isn’t for you if...

• You rely on a lot of top-down direction. Here, you’ll have a lot of freedom and ownership of your role, and you’ll be expected to shape your own progression.
• You’re not comfortable working in a fast-paced environment. Our speed and scalability are what set us apart; you need to be able to act quickly and think on your feet.
• You struggle to follow through on ideas. We value people who do what they say they will. If you care about something, you have the freedom here to make it happen.
• You don’t like change. You’ll get on great here if you relish the ambiguity of rapid growth and are willing to embrace uncertainty.

What’s in it for you…

We offer a generous mix of benefits for the things that really matter to our people, including:

• A salary between £60,000 and £80,000 – dependant on experience + reviewed annually.
• 27 days holiday + bank holidays (some can be flexible) + day off on your birthday + three days (full time) per year for Dependant leave.
• Two volunteering days per year.
• Option to work abroad for up to six weeks a year.
• Secclbrate - our recognition programme that offers a mix of flexible rewards including extra pay, additional holiday and increased learning budget.
• Length of service award – one month paid sabbatical at eight years.
• 6% employer pension contribution, and life assurance.
• Private medical insurance with AXA Health.
• Enhanced Parental leave.
• MacBook and up to £500 home office set up budget.
• £750 per person learning budget.
• Health and wellbeing initiatives including free therapy via Wellness Cloud, mental health support via Headspace.
• Strong financial wellbeing focus including access to Octopus Money, Octopus Share Incentive Plan and will writing offering via Octopus Legacy.
• Perkbox – Flexi-points giving you a range of discounts and perks including free weekly coffee, gym and retail discounts.
• Access to initiatives like Cycle to Work and Octopus Electric Vehicle Leasing.

Our culture

We're proud to put people first, creating a culture where we truly listen to what matters most to them. Our transparent and inclusive environment encourages diversity of thought, challenge and experimentation.

Interview process

Interviewing is a two-way thing, and we want you to have the time and opportunity to get to know us, as much as we are getting to know you. Our interviews are conversational, so come with questions and be curious. In general, you can expect the interview process to look a bit like this, (following an initial chat with one of our Talent team):

• First stage – 30 mins competencies-based interview with the hiring manager.
• Second stage – 90 minute scenario based interview or assessment.
• Final stage – 30 mins bar-raiser culture-based interview.

We’ll only close this role once we have enough applications for the next stage. Please submit your application as soon as possible to make sure you don’t miss out and you should expect to hear back from us within one to two weeks of applying.

Our aim is to build a diverse and inclusive company of awesome people, with unique skills, passions and experiences. All applicants will be considered for employment without attention to age, ethnicity, religion, sex, sexual orientation, gender identity, family or parental status, national origin, or veteran, neurodiversity or disability status. If this sounds like your kind of thing, we encourage you to apply even if you don’t tick every box. We’d love to hear from you!