Head of IT Security Operations

- Manage a team of approx. 4 individuals: hiring, coaching, and creating an environment where people do the best work of their careers. - SoC leadership & incident response: Run day to day SoC operations, elevate detection & response maturity, and lead major incident command calmly under pressure. Ensure investigations are rigorous, evidence based, and drive tactical fixes as well as strategic improvements. - Define and execute the SoC strategy for the next 2-3 years, including pragmatic adoption of cloud and AI assisted threat detection, triage, and automation (SOAR). - Own the operating effectiveness of key controls (e.g., vulnerability management, baseline security, DLP). Ensure continuous control monitoring, coverage metrics, and clear KRIs/KPIs that matter to the business. - Establish, own, and execute the banks penetration testing, red team, and purple team roadmap - coordinating internal capabilities and external partners to simulate realistic adversary behaviors and ensure continuous improvement of detection, response, and control effectiveness. - Oversee the operational workflow of the security team, including triaging incoming support tickets, security requests, and operational tasks. Ensure efficient dispatching and prioritization of work across the CISO organization and maintain clear service level expectations with internal stakeholders. - Partner closely with Architecture, Engineering, Infrastructure, IT Ops, and Developers to land controls and patterns that scale. - Strengthen incident readiness, tabletop exercises, and post incident close call learning to boost resilience and reduce repeat issues. - Engage customers, auditors, and internal leaders; translate risk into clear business context; advocate for secure by default choices.