Job Description
We are looking for an experienced and hands-on Security Operations Lead to drive our Monitoring, Incident, and Vulnerability Management activities. This is a key technical role within the Information Security function, responsible for ensuring effective security operations in line with policy, partner, and compliance requirements.
The role requires a proactive and analytical professional who can respond to emerging threats, strengthen controls, support business needs, and act as a reliable security partner across the organization.
Key Responsibilities
Manage incident response process, including investigation coordination, reporting, and post-incident remediation, fully aligned with policy and partner requirements. Infosec point of contact with clients during incidents.
Oversee SIEM event monitoring and control effectiveness (working with our external Security Partner).
Own vulnerability management, including penetration testing oversight and patch/update coordination with IT.
Perform routine internal vulnerability assessments and risk analysis.
Supporting IT Teams with SIEM investigations, providing technical security advice and expertise.
Provide monthly operational security reports.
Supporting the Head of InfoSec with the ISO program with documentation and procedures.
Contribute to security awareness programs, alerts, and communications.
Prepare management reports and track security metrics and KPIs.
Lead the activities related to GDPR maintenance.
Research new threats and industry trends to enhance our defenses.
Support external assessments, reviews, and investigations when needed.
Pen-Test.
Several years of experience in compliance, information security (including GDPR) and cybersecurity in global companies.
Working in a dynamic industry where content security is critical and company and client requirements are changing and evolving.
Audit and compliance experience in working with an ISO 27001 certification program or similar.
University degree in Information Technology, Cybersecurity, or a related field.
Relevant Security certifications (e.g. CISM, CISSP, Ethical Hacker).
Relevant audit certification – (e.g. CIA, ISO 27001 Lead Auditor).
Strategic and Pragmatic Mindset: Ability to balance strict security requirements with the commercial needs of the business.
Stakeholder Management: Exceptional communication skills to mentor, support, and train stakeholders across different levels of the organization.
Independence & Resilience: Proactive approach to problem-solving, with the ability to act as a “Change Authority” in a dynamic environment.
Analytical Thinking: Precision in tracking KPIs/KRIs and maintaining detailed compliance documentation.
Excellent technical experience and security tooling.
Deep understanding of hacking, data exfiltration, and the current and emerging threat landscape.
Full-time contract.
Hybrid type of work.
Medical healthcare and Multisport card.
Stable employment and professional growth in an international environment.
Friendly and open-minded teams.
