Security Operations Center (SOC) Manager | SEB, Tallinn

SEB is a leading financial services group, and at the same time, one of the largest IT employers in the Nordics & Baltics. Banking is changing rapidly, and we are proud of our reputation for being entrepreneurial and innovative in the face of change. Our brilliant techies work hard to future proof SEB’s digital architecture and customer products because it genuinely makes a huge impact for our customers and colleagues. Does that sound like a fit for you? We are looking for a highly motivated and experienced SOC Manager to lead our Security Operations Center. As the SOC Manager, you will be responsible for overseeing the daily operations of the SOC team, developing and optimizing incident response strategies, managing team of security analysts, and ensuring security monitoring and incident handling.

Your responsibilities will include:

• Lead and oversee the Security Operations Center team across the Baltic countries.
• Allocate responsibilities and manage schedules to optimize the performance of Security Analysts.
• Ensure prompt detection, investigation, and escalation of security incidents.
• Develop, maintain, and enhance SOC processes, playbooks for consistent operations.
• Coordinate cyber incident response activities, including containment, eradication, and post-incident analysis.
• Monitor threat landscape and lead initiatives to proactively identify and mitigate emerging threats.
• Oversee the deployment, configuration, and optimization of security technologies such as SIEM, EDR, and IDS/IPS, etc.
• Perform regular SOC capability assessments and track progress against maturity models.
• Collect, analyse, and report on SOC performance metrics (e.g., KPIs, SLAs) to inform strategic decisions.
• Manage vendor relationships, contracts, and service quality with MSSPs, tool providers, and other external partners.
• Drive continuous improvement initiatives based on lessons learned and emerging best practices.

We are looking for:

• 5+ years of experience in cybersecurity with at least 2 years in a SOC leadership role.
• Strong knowledge of SIEMs, IDS/IPS, and other SOC tools.
• Experience with incident response, threat detection, and vulnerability management.
• Familiarity with MITRE ATT&CK framework and threat hunting methodologies.
• Strong leadership, communication, and stakeholder management skills.
• Relevant certifications (e.g., CISSP, CISM, GCIA, GCIH, CEH) are strongly preferred.
• Have a proactive mindset, with a strong drive for continuous improvements and staying ahead of emerging threats.
• Fluent in English.

What we offer:

• Interesting and challenging work in highly professional international team
• Friendly and welcoming culture
• Hybrid way of working
• Extensive opportunities for professional development
• Attractive compensation and benefits
• Challenging, cutting-edge work

Do you want to be a part of SEB?  Welcome to join our inspiring culture and dedicated team distributed across the Baltic states and beyond.  We are looking forward to your application by July 13, 2025. Learn more about working at SEB https://www.seb.ee/karjaar/karjaar It is our fundamental belief that inclusion and diversity is crucial for our future success. We strive to have an inclusive, value-driven culture where employees feel valued, respected, and involved irrespective of who they are, what they believe or where they come from.