Security Operations Center Lead (m/f/x) onsite / remote in Germany

Security Operations Center Lead (m/f/x) onsite / remote in Germany

Scalable Capital is a leading digital investment platform in Europe, empowering individuals to shape their financial future. Our services include:

• Scalable Broker: An easy and affordable platform for investing in stocks, ETFs, and other exchange-traded products, along with savings plans.
• Scalable Wealth: A digital wealth management service offering professional ETF portfolio investments, also available as a white-label solution for B2B partners.
• European Investor Exchange (EIX): A stock exchange for retail investors across Europe.

Founded in 2014, we employ over 500 people across Munich, Berlin, Vienna, and London. Our team works on innovative financial services, guided by our core company values. Visit our finance blog and social media channels to learn more.

We are seeking a seasoned security professional to lead and scale our Security Operations Center (SOC). As SOC Manager, you will establish and refine SOC processes, mentor analysts, and serve as the primary contact for incident response and security monitoring activities. You will collaborate with engineering, IT, and leadership to align security operations with business goals, ensure compliance, and improve detection, investigation, and response capabilities.

Key responsibilities:

1. Manage daily SOC operations, including alert triage, incident response, and threat hunting.
2. Develop and maintain SOC playbooks, runbooks, and SOPs.
3. Lead major security incidents, coordinating teams and communicating with stakeholders.
4. Define and monitor SOC metrics (MTTR, alert volume, false positives) for continuous improvement.
5. Optimize SIEM/SOAR platforms for high-fidelity detections.
6. Conduct risk assessments and gap analyses to identify security weaknesses.
7. Mentor and develop SOC analysts and engineers, fostering a culture of learning.
8. Ensure SOC processes and documentation meet regulatory standards.
9. Evaluate and implement new security tools and technologies.

Qualifications:

• At least 5 years of hands-on cybersecurity operations experience, including 2+ years in leadership or SOC management.
• Deep knowledge of SIEM, SOAR, incident response, threat intelligence, and cloud security (AWS preferred).
• Proven experience in building or scaling a SOC, including process development and team leadership.
• Relevant certifications such as CISSP, CISM, or GIAC (GSOC, GCIH) are advantageous.
• Exceptional communication skills for technical and non-technical audiences.
• Strong analytical and problem-solving skills with a proactive approach.
• Experience with compliance frameworks like ISO 27001, DORA, PCI-DSS, etc.

What we offer:

• Be part of a fast-growing, impactful Fintech startup in Europe.
• Work with a diverse, inclusive, and international team.
• Choose to work from our centrally located offices in Munich or Berlin, or remotely within Germany (if eligible).
• Access to the latest hardware and tools.
• Participate in knowledge sharing sessions and utilize your Education Budget.
• Join our free German language classes and experience German culture.
• International relocation support.
• Flexible vacation policy and work-from-abroad options.
• Competitive compensation and company pension scheme.
• Monthly 25% contribution to the ‘Deutschland Jobticket’.
• Complimentary PRIME+ Broker subscription.