SECOPS Lead

As SECOPS Lead, you will supervise a team of analysts operating 24/7 to monitor and respond to cyber threats across both IT and Rail Operational Technology (OT) environments. Your role ensures robust incident detection, response capabilities, and alignment with our strategic cybersecurity plan. You will also play a key role in managing maintenance-related cybersecurity tasks and operational readiness, while continuously improving security processes, tooling, and procedures.

Main Responsibilities:

Strategic

• Lead and coordinate 24/7 cybersecurity operations across IT and Rail OT environments.
• Ensure alignment with the company’s Cyber Security Management Plan and security objectives.
• Develop and enforce Standard Operating Procedures (SOPs) for the Security Operations Center (SOC).
• Maintain oversight of security operations documentation and reporting.

Financial

• Support planning and optimization of the cybersecurity operations budget.
• Ensure efficient use of cybersecurity resources and technologies.

Stakeholder / Customer

• Act as the primary point of contact for operational security incidents.
• Coordinate with internal teams and approved external partners on operational security matters.
• Ensure that cybersecurity support is aligned with maintenance, IT, and engineering activities.

Operational

• Supervise the SECOPS team to maintain continuous monitoring and response readiness.
• Manage the execution and documentation of Preventive and Corrective Maintenance tasks related to cybersecurity.
• Monitor system logs, alerts, and dashboards to detect, analyse, and respond to incidents.
• Participate in security assessments, simulations, and continuous improvement initiatives.

Capability / People

• Lead and mentor a team of security professionals working in rotating shifts.
• Deliver training and guidance to build team capabilities and improve threat response.
• Monitor team performance and support career progression within the SECOPS function.

MINIMUM QUALIFCATIONS

Min.

Required

Desirable

Education

Bachelor’s degree in information technology, Cybersecurity, Computer Science, or a related field

Master's degree in Cybersecurity, Information Security, or a related discipline

Experience

Minimum 5 years of experience in security operations, preferably in IT/OT environments with hands-on experience in threat detection, incident response, and SOC operations

Experience in leading and managing cybersecurity teams, particularly in a 24/7 shift-based SOC or IT/OT security environment

Skills/Training

• Proficiency in security tools and incident response methodologies
• Strong expertise in SIEM, SOAR, IDS, endpoint protection, and network security tools
• Hands-on experience with latest robust security solution for IT and OT systems
• Familiarity with cybersecurity frameworks (ISO 27001, NIST CSF, IEC 62443) and regulatory compliance requirements

• Industry-recognized certifications such as CISSP, CISM, CEH, GIAC (GCIH, GCIA, or GCFA), OSCP, or equivalent
• Training or certifications in Incident Response, Digital Forensics, or Threat Intelligence
• Experience with cybersecurity incident simulations, Red Team/Blue Team exercises, and security automation (SOAR)