Security Operations Lead (SecOps)

📋 Description

• Set strategy and technical direction for Sword’s SOC.
• Define operating model, SIEM, detection, incident response, and scaling roadmap.
• Drive AI- and automation-first security ops with SOAR and ML.
• Lead SOC/CSIRT, mentor engineers, manage on-call and major incidents.
• Own end-to-end SIEM: data sources, normalization, retention, cost.
• Lead incident response and post-incident reviews with stakeholders.

🎯 Requirements

• Bachelor’s degree in CS, Cybersecurity, or equivalent experience.
• Proven experience scaling a SOC with automation and AI.
• Hands-on SOC structuring: SIEM selection, implementation, and runbooks.
• Deep SIEM expertise (Splunk, Sentinel, Chronicle, Elastic) or similar.
• Lead SOC/CSIRT as technical head; own incident lifecycle.
• Strong incident response track record and post-incident improvements.
• Cloud experience (AWS and/or GCP) with cloud-native controls.
• Scripting and development skills (Python, Go, Bash) for automation.

🎁 Benefits

• Health, dental and vision insurance
• Meal allowance
• Equity shares
• Remote work allowance
• Flexible working hours
• Work from home