Security Operations Lead

We are looking for an experienced and hands-on Security Operations Lead to drive our Monitoring, Incident, and Vulnerability Management activities. This is a key technical role within the Information Security function, responsible for ensuring effective security operations in line with policy, partner, and compliance requirements.

The role requires a proactive and analytical professional who can respond to emerging threats, strengthen controls, support business needs, and act as a reliable security partner across the organization.

Key Responsibilities

• Manage incident response process, including investigation coordination, reporting, and post-incident remediation, fully aligned with policy and partner requirements. Infosec point of contact with clients during incidents.
• Oversee SIEM event monitoring and control effectiveness (working with our external Security Partner).
• Own vulnerability management, including penetration testing oversight and patch/update coordination with IT.
• Perform routine internal vulnerability assessments and risk analysis.
• Supporting IT Teams with SIEM investigations, providing technical security advice and expertise.
• Provide monthly operational security reports.
• Supporting the Head of InfoSec with the ISO program with documentation and procedures.
• Contribute to security awareness programs, alerts, and communications.
• Prepare management reports and track security metrics and KPIs.
• Lead the activities related to GDPR maintenance.
• Research new threats and industry trends to enhance our defenses.
• Support external assessments, reviews, and investigations when needed.
• Pen-Test.

Requirements:
• Several years of experience in compliance, information security (including GDPR) and cybersecurity in global companies.
• Working in a dynamic industry where content security is critical and company and client requirements are changing and evolving.
• Audit and compliance experience in working with an ISO 27001 certification program or similar.
• University degree in Information Technology, Cybersecurity, or a related field.
• Relevant Security certifications (e.g. CISM, CISSP, Ethical Hacker).
• Relevant audit certification – (e.g. CIA, ISO 27001 Lead Auditor).
• Strategic and Pragmatic Mindset: Ability to balance strict security requirements with the commercial needs of the business.
• Stakeholder Management: Exceptional communication skills to mentor, support, and train stakeholders across different levels of the organization.
• Independence & Resilience: Proactive approach to problem-solving, with the ability to act as a "Change Authority" in a dynamic environment.
• Analytical Thinking: Precision in tracking KPIs/KRIs and maintaining detailed compliance documentation.
• Excellent technical experience and security tooling.
• Deep understanding of hacking, data exfiltration, and the current and emerging threat landscape.

Benefits:
• Full-time contract.
• Hybrid type of work.
• Medical healthcare and Multisport card.
• Stable employment and professional growth in an international environment.
• Friendly and open-minded teams.