Head of SecOps

Head of SecOps

Job Description

[Up to c. $950k Comp Package | Hybrid Working - 3 Days in Office]

Role Overview

We’re partnering with one of the world’s most technologically advanced hedge funds to appoint a Head of Security Operations, a senior leadership role reporting directly into the firm’s CISO. This position carries broad authority and accountability for how the organisation prepares for, detects, manages, and recovers from security incidents across its global trading, research, and infrastructure estate. This is not a conventional SOC leadership role. The firm is seeking a battle-tested security leader with the judgement, composure, and technical depth to run high-stakes incident response in an environment where milliseconds, data integrity, and operational continuity matter. Many successful candidates will have previously acted as a de facto CISO in smaller or highly specialised trading or technology-driven organisations, or have led security operations at exceptional scale. You’ll sit at the centre of the firm’s defensive posture - owning incident command, shaping response strategy, and ensuring the organisation is prepared for worst-case scenarios in one of the most demanding technology environments in the world...

Key Responsibilities

• Lead and evolve a global Security Operations function, responsible for protecting trading platforms, research systems, and proprietary intellectual property
• Act as the executive owner of incident management, taking command during high-severity security events and coordinating response across technology, legal, compliance, and executive stakeholders
• Ensure the firm maintains world-class incident readiness, including escalation models, decision frameworks, communications protocols, and executive-level reporting
• Oversee detection and response capabilities across SOC operations, ensuring alerts are actionable, prioritised, and aligned with real-world threat scenarios
• Drive the integration of threat intelligence into detection, hunting, and response workflows, with a focus on adversaries relevant to financial markets and advanced trading environments
• Sponsor and guide continuous threat-hunting and purple-team activity, using adversarial simulation to expose gaps in detection, response, and decision-making
• Own the vulnerability and exposure management lifecycle, ensuring critical risks are identified, prioritised, and remediated with urgency and accountability
• Commission and oversee penetration testing and adversary emulation, translating findings into tangible improvements across infrastructure and applications
• Design and lead executive-level tabletop and crisis simulations, tailored to realistic financial-sector and insider-risk scenarios
• Serve as a trusted advisor to the CISO and senior leadership on operational security risk, incident posture, and response maturity

What You’ll Bring…

• 9+ years in cybersecurity, with substantial experience leading security operations, incident response, or crisis management at enterprise or institutional scale
• A proven track record acting as the ultimate decision-maker during security incidents, including coordination across technical, legal, and executive teams
• Deep expertise in incident response, detection engineering, SOC operations, and threat-led defence
• Strong technical grounding across SIEM, EDR, threat intelligence platforms, and IR tooling - sufficient to challenge assumptions and guide teams effectively
• Demonstrated experience running purple/red team exercises and converting outcomes into durable defensive improvements
• Sound understanding of cloud-native and modern infrastructure environments, including logging, identity, and workload security
• Exceptional judgement, calm under pressure, and the ability to communicate clearly during high-impact events
• A leadership style built on credibility, decisiveness, and accountability rather than hierarchy alone
• (Preferred) Background in trading firms, hedge funds, or similarly high-performance, high-consequence technology environments
• (Preferred) Familiarity with regulatory expectations relevant to global financial institutions (e.g. SEC, NIST-aligned frameworks)
• (Preferred) Experience operating at or just below CISO level, with broad exposure to executive risk decision-making

...

Apply for this role

All fields marked with * are required.