This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Security Operations Manager based in Ireland.
As a Security Operations Manager, you will lead and strengthen a modern cyber defense function responsible for protecting a complex and evolving technology environment. You will oversee security operations, incident response, threat detection, and vulnerability management while driving continuous improvements across the organization's security posture. This role combines strategic leadership with hands-on operational oversight, working closely with cross-functional teams to ensure rapid threat response and effective risk reduction. You will play a key role in developing security capabilities, optimizing detection and response processes, and mentoring a high-performing cybersecurity team. This is an excellent opportunity for an experienced security leader looking to make a measurable impact within a collaborative, remote-first environment.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Security Operations Manager based in Ireland.
As a Security Operations Manager, you will lead and strengthen a modern cyber defense function responsible for protecting a complex and evolving technology environment. You will oversee security operations, incident response, threat detection, and vulnerability management while driving continuous improvements across the organization's security posture. This role combines strategic leadership with hands-on operational oversight, working closely with cross-functional teams to ensure rapid threat response and effective risk reduction. You will play a key role in developing security capabilities, optimizing detection and response processes, and mentoring a high-performing cybersecurity team. This is an excellent opportunity for an experienced security leader looking to make a measurable impact within a collaborative, remote-first environment.
Accountabilities
- Lead and oversee security operations, including Security Operations Center (SOC) activities, detection engineering, incident response, and exposure management.
- Ensure efficient alert triage, escalation procedures, incident coordination, and rapid containment of security threats.
- Prioritize vulnerabilities and security exposures based on business impact, exploitability, and asset criticality to reduce organizational risk.
- Maintain operational dashboards, response playbooks, runbooks, remediation tracking, and key cybersecurity performance metrics.
- Collaborate with cross-functional stakeholders, including IT, Platform Engineering, Identity & Access Management, Product, Governance, Risk & Compliance, Legal, and business teams during security incidents and remediation efforts.
- Build, mentor, and develop the Cyber Defense team through hiring, onboarding, coaching, and talent retention initiatives.
- Continuously improve detection capabilities, response procedures, and security controls using threat intelligence and lessons learned from incidents.
- Report on security operations performance, incident trends, and overall cyber risk posture to leadership and key stakeholders.
- 10+ years of professional experience in Information Security.
- At least 3 years of experience leading security teams with direct people management responsibilities.
- Proven expertise managing Security Operations Center (SOC) functions, incident response, and improving operational metrics such as MTTD and MTTR.
- Strong experience designing and maintaining detection logic across SIEM, EDR, cloud security platforms, and developing effective response runbooks.
- Deep understanding of modern attack techniques, including account takeover, credential theft, privilege escalation, and data exfiltration, with familiarity using frameworks such as MITRE ATT&CK.
- Experience managing vulnerability prioritization using CVSS, asset criticality, and business impact assessments.
- Hands-on experience with enterprise SIEM solutions such as Splunk, Microsoft Sentinel, Chronicle, or Elastic, as well as SOAR platforms.
- Good understanding of cloud security monitoring across AWS, Azure, or Google Cloud Platform.
- Knowledge of Identity and Access Management (IAM), Privileged Access Management (PAM), Single Sign-On (SSO), and identity-focused attack vectors.
- Ability to define, monitor, and communicate cybersecurity KPIs and operational metrics to both technical and executive audiences.
- Upper-Intermediate (B2) level English or higher.
- Experience within fintech, e-commerce, or similarly high-risk industries is considered an advantage.
- Previous hands-on experience as a SOC Analyst, Incident Responder, or Detection Engineer is a plus.
- Experience building or significantly maturing a Security Operations or Cyber Defense function is highly valued.
- Familiarity with threat intelligence platforms and threat-informed defense methodologies is beneficial.
- Professional certifications such as CISSP, CISM, GSOM, GCED, GCIH, or equivalent are advantageous.
- Fully remote work environment.
- 20 days of paid annual leave.
- 10 days of paid sick leave.
- Public holidays in accordance with the approved company holiday calendar.
- Medical allowance.
- Professional development and education budget.
- Language learning budget.
- Wellness budget covering gym memberships, sports equipment, and related expenses.