Assistant Director (Security Operations)

You lead and guide the Security Operations Centre (SOC) in monitoring, investigation, and response activities while driving operational discipline. You also review and advise on the design and optimisation of SOC infrastructure, working with various stakeholders to ensure alignment with organisational security and governance requirements. You will build a high-performing SOC team equipped to operate effectively in a dynamic threat environment.

- Partner the Section Head in guiding the development and expansion of the SOC's capabilities and operating model - Build, mentor, and develop a high-calibre SOC team through performance management and leadership development - Lead SOC-related capability development projects and detection engineering efforts - Provide oversight and direction during cyber incidents and escalations, ensuring timely, coordinated and effective response actions - Support the Section Head in overseeing 24/7 monitoring duties, maintaining operational vigilance and command presence - Review and advise on the design, placement, and coverage of intrusion detection capabilities and endpoint hardening agents across host and network environments - Engage internal and external stakeholders to align SOC requirements with enterprise priorities Challenge(s) - Balancing leadership responsibilities with sufficient technical depth to effectively guide SOC operations and maintain credibility with the team - Managing manpower, resource allocation, and the integration of complex security tools within a rapidly evolving threat landscape - Leading decisively and maintaining composure during high-pressure cyber incidents - Sustaining continuous operational readiness within a 24/7 monitoring environment while driving ongoing capability development

- Education in Cybersecurity, Computer Engineering, Information Systems, or a related field - At least 6 years of working experience in cybersecurity roles - Relevant technical certifications such as GIAC Security Operations Certified (GSOC), GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), and/or Certified Information Security Manager (CISM) are advantageous - Proficiency in security tools including Security Information and Event Management (SIEM), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), and Endpoint Detection and Response (EDR) - Familiarity with evaluating and selecting cybersecurity tools - Good team management skills - Strong problem-solving, conceptual and analytical abilities - Strong writing, interpersonal and communication skills, with a meticulous approach to work Only shortlisted candidates will be notified.