Get AI-powered advice on this job and more exclusive features.
This range is provided by Cititec. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range
Direct message the job poster from Cititec
Principal Consultant | Account & Delivery Lead | Commodities & Fintech
Security Operations Lead – Fintech – Trading
Hybrid Working – 3 days in London office
The Role
As SecOps Lead, you will act as the main liaison between internal security, engineering, and IT teams, and an external Managed Detection and Response (MDR) partner. You’ll oversee incident management, enhance detection and response processes, and strengthen the company’s overall security posture.
Key Responsibilities
- Serve as the primary contact for the MDR partner, managing the relationship, conducting service reviews, and ensuring SLAs are consistently met.
- Lead incident response efforts during security events — coordinating across teams to achieve fast containment and recovery.
- Review and fine-tune security alerts with the MDR provider, reducing false positives and improving detection accuracy.
- Develop and monitor MDR performance metrics (KPIs), presenting insights and trends to senior leadership.
- Maintain and evolve the security incident response plan (IRP) and playbooks in collaboration with the MDR provider.
- Translate technical security risks into actionable business recommendations for stakeholders at all levels.
- Contribute to broader cybersecurity initiatives, including vulnerability management, cloud security, data protection, and governance, risk & compliance (GRC).
Requirements
- In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned.
- Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation.
- Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black.
- Working knowledge of network security, including protocols, firewalls, IDS/IPS, and traffic analysis.
- Experience with cloud security principles in AWS, Azure, or GCP.
- Ability to interpret and apply threat intelligence to improve controls and detection coverage.
- Experience with MacOS preferred
- Strong communication skills — capable of articulating complex technical issues to both technical and non-technical stakeholders.
- Proven track record of managing vendor relationships and holding third-party partners accountable.
- Analytical mindset with strong problem-solving and prioritization skills.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Referrals increase your chances of interviewing at Cititec by 2x
Location: London, England, United Kingdom
#J-18808-Ljbffr”, “datePosted”: “2026-04-11”, “hiringOrganization”: { “@type”: “Organization”, “name”: “Cititec”, “sameAs”: “https://uk.whatjobs.com/pub_api__cpl__402737992__4861?utm_campaign=publisher&utm_medium=api&utm_source=4861” }, “jobLocation”: { “@type”: “Place”, “address”: { “@type”: “PostalAddress”, “addressLocality”: “” } } }Get AI-powered advice on this job and more exclusive features.
This range is provided by Cititec. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range
Direct message the job poster from Cititec
Principal Consultant | Account & Delivery Lead | Commodities & Fintech
Security Operations Lead – Fintech – Trading
Hybrid Working – 3 days in London office
The Role
As SecOps Lead, you will act as the main liaison between internal security, engineering, and IT teams, and an external Managed Detection and Response (MDR) partner. You’ll oversee incident management, enhance detection and response processes, and strengthen the company’s overall security posture.
Key Responsibilities
- Serve as the primary contact for the MDR partner, managing the relationship, conducting service reviews, and ensuring SLAs are consistently met.
- Lead incident response efforts during security events — coordinating across teams to achieve fast containment and recovery.
- Review and fine-tune security alerts with the MDR provider, reducing false positives and improving detection accuracy.
- Develop and monitor MDR performance metrics (KPIs), presenting insights and trends to senior leadership.
- Maintain and evolve the security incident response plan (IRP) and playbooks in collaboration with the MDR provider.
- Translate technical security risks into actionable business recommendations for stakeholders at all levels.
- Contribute to broader cybersecurity initiatives, including vulnerability management, cloud security, data protection, and governance, risk & compliance (GRC).
Requirements
- In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned.
- Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation.
- Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black.
- Working knowledge of network security, including protocols, firewalls, IDS/IPS, and traffic analysis.
- Experience with cloud security principles in AWS, Azure, or GCP.
- Ability to interpret and apply threat intelligence to improve controls and detection coverage.
- Experience with MacOS preferred
- Strong communication skills — capable of articulating complex technical issues to both technical and non-technical stakeholders.
- Proven track record of managing vendor relationships and holding third-party partners accountable.
- Analytical mindset with strong problem-solving and prioritization skills.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Referrals increase your chances of interviewing at Cititec by 2x
Location: London, England, United Kingdom
#J-18808-Ljbffr…