Lead Specialist in Security Operations, enhancing detection engineering and incident response at Pearson. Collaborate with teams and drive process improvements in a high-paced environment.
Responsibilities
Lead and execute advanced SOC operations, including incident detection, triage, containment, and root cause analysis across Pearson environments.
Develop, implement, and optimize detection logic, playbooks, and automated response workflows to reduce mean time to containment and improve SOC efficiency.
Continuously assess and enhance SOC processes and procedures, ensuring best practices and alignment with evolving threat landscapes.
Collaborate with threat intelligence teams to analyze emerging risks and integrate relevant TTPs (Tactics, Techniques, and Procedures) into SOC operations.
Act as a trusted advisor to internal stakeholders, translating technical findings into actionable insights and ensuring transparency throughout security operations.
Ensure all SOC activities comply with relevant standards (e.g., NCSC, Cyber Essentials Plus) and internal Pearson policies.
Deliver executive-level reporting, risk assessments, and metrics to demonstrate the effectiveness of SOC operations.
Requirements
Proven experience in security operations, incident response, and detection engineering
Hands-on expertise with SOAR, EDR, NDR, and SIEM technologies
Experience with one or more Cloud Service Providers (AWS, Azure, GCP)
Strong background in multitasking, adapting, and thriving in fast-paced environments
Excellent communication skills, especially in stakeholder management and translating technical risk to non-technical audiences
Security Engineer enhancing cybersecurity tools and solutions for The Walt Disney Company. Performing system analyses and developing security configurations for improved protection against cyber threats.
Security Operations Lead responsible for security operations aligning with policies and compliance. Handling incident response, vulnerability management, and supporting IT teams with security expertise.
Cyber Security Specialist protecting digital estate from threats at the University of Edinburgh. Focused on identifying and mitigating cyber risks while supporting teaching and research services.
Cybersecurity Incident Response Analyst detecting and responding to cyber threats at NOV. Collaborating using AI tools to enhance cybersecurity operations across IT, cloud, and OT environments.
Security Engineer II at AvidXchange enhancing security operations and incident response. Collaborating with teams to develop, tune and improve security monitoring and automation capabilities.
Director leading security operations strategy and overseeing investigations at Ford Motor Company. Responsible for global investigations, crisis management, and team leadership.
Lead global Cyber Detect and Respond team at Assa Abloy, ensuring timely incident response and security compliance. Oversee operations while collaborating across IT and business functions for effective threat management.
Lead Cybersecurity Analyst responsible for technical leadership of a 24x7 SOC team at AT&T. Drive operational standards, incident response, and continuous improvement initiatives.