Cyber Security Operation Senior

We are looking for a Senior Cybersecurity Operations Management Specialist to support and strengthen cybersecurity operations in a large, complex, and security-sensitive IT environment.

The role combines hands‑on technical expertise with operational leadership, focusing on Security Operations Centre (SOC) activities, Incident Response, Digital Forensics, and continuous improvement of monitoring and response capabilities across on‑prem, cloud, and hybrid infrastructures.

This position requires the ability to operate effectively in high‑pressure situations, coordinate with multiple technical and non‑technical stakeholders, and contribute to the maturity of cybersecurity operational processes.

• Lead and support SOC operations, including incident detection, triage, containment, eradication, and recovery
• Coordinate and oversee Cybersecurity Incident Response and Digital Forensic Investigations
• Review, optimise, and enhance logging, monitoring, and detection capabilities
• Manage and improve security policies and rules across on‑premises and cloud environments
• Apply threat‑hunting techniques and map adversary behaviour using the MITRE ATT&CK framework
• Support and mentor technical teams during complex security incidents
• Produce structured reports on findings, gaps, and improvement recommendations
• Collaborate with internal technical teams and external service providers to ensure effective security operations

• 12+ years of experience in IT and cybersecurity operations
• Strong background in SOC operations and Incident Response for large or complex environments
• Proven experience leading or coordinating high‑impact cybersecurity incidents
• Experience working in security‑sensitive or restricted environments
• Familiarity with data protection and information security regulations

• Strong hands‑on experience with SIEM platforms (e.g. Splunk)
• Experience with EDR solutions (e.g. Carbon Black or equivalent) and SOAR tooling
• Digital forensics and malware analysis in enterprise environments
• Threat hunting and adversary analysis using MITRE ATT&CK
• Knowledge of network security controls (FW, IDS/IPS, WAF, VPN, proxy)
• Security operations across on‑prem, cloud, and hybrid infrastructures
• Understanding of information security management standards (e.g. ISO 27001, NIST)

• Strong analytical and problem‑solving skills
• Ability to work calmly and decisively under pressure
• Excellent communication skills in English (written and spoken)
• Ability to operate in multi‑team and multicultural environments
• High level of discretion, integrity, and professionalism

• Long‑term contract with high stability and extension potential
• Predominantly remote delivery model within the EU
• Senior, impactful role within a mature cybersecurity operations environment