Security Operations Manager

Hello! We’re Teya. Teya is a payment and software service provider, headquartered in London serving small, local businesses across Europe. Founded in 2019, we build easy to use, integrated tools that enable our members to accept payments and boost business performance. At Teya we believe small, local businesses are the lifeblood of our communities. We’re here because we don’t believe there’s a level playing field that gives small businesses with a fighting chance against the giants of the high street. We’re here because we see banks and legacy service providers making things harder for them. We don’t think the best technology or the best service should be reserved for those with the biggest headquarters. We’re here to fight for a future where small, local businesses can thrive, and to commit the same dedication they offer all of us. Become a part of our story. We’re looking for exceptional talent to join our mission. We offer a chance to create impact in a high-energy and connected culture, while benefiting from continuous learning opportunities, a supportive community which is proud to serve our mission, and comprehensive benefits.

Your mission

At Teya, Security Operations is about speed, clarity, and outcomes—not noise. As a Security Operations Lead, you’ll be the hands-on technical lead responsible for detecting, responding to, and reducing real security risk across the business. You’ll own day-to-day SecOps execution—from incident response and SIEM to endpoint security and vulnerability management—while evolving Teya’s SOC into an AI-first, automation-driven operation that materially improves MTTD and MTTR in a high-velocity fintech environment.

Responsibilities

• Lead technical incident response for phishing, malware, ransomware, data exposure, and account compromise.
• Act as the primary escalation point during high-severity incidents, coordinating investigation, containment, and recovery.
• Participate in and help run the security on-call rotation, including out-of-hours response.
• Own and evolve SIEM operations: log onboarding, detection tuning, alert triage, and coverage.
• Build high-signal detections and proactive threat hunting, turning threat intel into actionable alerts.
• Use automation, SOAR, and AI-assisted workflows to reduce manual toil and improve MTTD/MTTR.
• Own endpoint security operations (EDR, DLP), partnering with IT and engineering to harden controls.
• Run the full vulnerability management lifecycle, driving remediation with clear ownership and accountability.
• Manage operational relationships with MDR / SOC providers, ensuring effective triage and escalation.
• Use metrics and reporting to drive operational improvement and demonstrate impact.

Requirements

• 6–8 years’ experience in Security Operations, SOC, or Incident Response roles.
• Hands-on expertise operating SIEM and EDR tools in production environments.
• Proven experience leading technical incident response under pressure.
• Strong understanding of cloud and hybrid environments (AWS preferred).
• Experience driving vulnerability remediation across engineering teams.
• Ability to work effectively with MDR / external security providers.
• Strong analytical skills and clear, calm communication during incidents.

Nice To Have

• Fintech, payments, or regulated environment experience.
• Detection engineering, threat hunting, SOAR, or AI SOC experience.
• Security certifications (e.g. CISSP, CISM, GIAC).

Ways of working

• Extreme ownership: You take end-to-end responsibility for outcomes, not just findings or tooling output.
• Pragmatic and delivery-aware: You balance risk reduction with product velocity, focusing on changes that materially reduce risk.
• Low-ego and collaborative: You build trust with engineers, product, and operations teams, influencing through credibility and partnership.
• Impact-driven: You measure success through outcomes—risk reduction, adoption, and time-to-remediate—not activity.
• Data-informed: You use metrics and trends to guide priorities and demonstrate impact.
• High bar for craft: You produce clear documentation, reusable patterns, and automation that scale across teams.
• AI-first mindset: You actively look for opportunities to use automation and AI to improve security outcomes.

Teya is proud to be an equal opportunity employer. We are committed to creating an inclusive environment where everyone regardless of race, ethnicity, gender identity or expression, sexual orientation, age, disability, religion, or background can thrive and do their best work. We believe that a diverse team leads to better ideas, stronger outcomes, and a more supportive workplace for all. If you require any reasonable adjustments at any stage of the recruitment process whether for interviews, assessments, or other parts of the application—we encourage you to let us know. We are committed to ensuring that every candidate has a fair and accessible experience with us.