SecOps Team Leader

Description:

We're looking for a Cyber Security SecOps Team Leader to join Global-e's Information Security department. The team leader will own and drive security operations, leading a team responsible for SIEM engineering, SOC operations, and the protection of Global-e's cloud and corporate environments.

The candidate must be passionate about cyber security and technology, with extensive hands-on experience operating advanced security products across cloud infrastructure, corporate environments, and endpoint ecosystems

Responsibilities:

Team Leadership

•      Manage, mentor, hire, and train the SecOps team, including hands-on technical guidance

•      Lead cyber security projects where the cyber team are the executors, and manage cyber-related projects executed by the IT department

•      Build a culture of documentation, process hygiene, and accountability

Technology

•      Own the SIEM platform end-to-end: architecture, data source onboarding, detection rule development, tuning, and coverage mapping

•      Build, Lead and oversee day-to-day SOC Operation.

•      Lead end-to-end incident response: detection, investigation, containment, eradication, and post-mortem

•      Manage and operate the security technology stack — identify opportunities to enhance defensive capabilities:

•      Cloud security security controls, CSPM, cloud-native monitoring and alerting

•      Corporate environment: Office 365, Azure AD/Entra ID, OKTA

•      Endpoint protection: EDR/XDR across Windows, macOS and linux endpoints, patch posture visibility

•      DLP: data loss prevention policies, monitoring, incident handling, and policy tuning across endpoints and cloud

•      Access and identity management.

•      Drive adoption of AI abilities to improve team efficiency including automated alert enrichment, playbook automation, and threat intel processing

•      At least 5 years of proven, hands-on experience in cyber security

•      Proven experience as a team leader in a security operations context

•      Deep, hands-on experience with SIEM and SOC platforms.

•      Experience securing cloud environments including cloud-native security controls

•      Experience managing endpoint security across Windows and macOS at scale (EDR/XDR, patch management)

•      Experience implementing and managing DLP solutions across endpoints and cloud

•      Experience handling and leading cyber incident investigations end-to-end

•      Innovative thinking with a strong drive toward automation and process improvement

Other Skills

•      Fluent English — written and verbal

•      Outstanding communication and presentation skills — comfortable with C-level executives and technical teams

•      Can-do attitude: accountable, positive, strong time management and multitasking

•      Passion for security and a genuine drive to be part of building something significant