Senior Cybersecurity Operations Specialist

We are seeking a highly experienced cybersecurity professional to strengthen security operations and resilience across a complex government technology environment.

In this role, you will work closely with senior security leaders and agency stakeholders to enhance incident response readiness, improve threat monitoring capabilities, and strengthen cyber resilience across a large, mission-critical digital ecosystem.

This is a strategic and hands-on role suited for professionals who thrive in high-impact environments and want to help secure national-scale digital infrastructure.

Key Responsibilities

1. Incident Response & Crisis Management

• Develop and standardise incident response playbooks across agencies

• Provide technical leadership during high-severity cyber incidents

• Support clear crisis governance structures and reporting workflows

2. Operational Readiness & Cyber Resilience

• Design and run cyber tabletop exercises and resilience testing programmes

• Introduce advanced testing approaches (e.g., scenario-based or chaos testing)

• Assess operational readiness and drive improvement initiatives

3. Monitoring & Asset Visibility

• Ensure systems are onboarded to central monitoring platforms

• Strengthen asset inventory governance and system visibility

• Support specialised monitoring use cases for complex environments (e.g., OT/ICS)

4. Vulnerability & Attack Surface Management

• Establish SOPs for vulnerability management across on-prem, cloud, and OT systems

• Oversee scanning, prioritisation, remediation, and validation workflows

• Assess real-world exploitability of vulnerabilities in context

5. Security Advocacy & Stakeholder Engagement

• Promote a strong cyber resilience culture across agencies

• Educate system owners and leaders on incident response and continuity planning

• Encourage a proactive, risk-informed approach to cybersecurity

Requirements

Experience

• 8–10 years in cybersecurity operations, SOC leadership, or incident response

• Experience managing incidents in complex hybrid environments

• Proven ability to lead or support crisis response at scale

Technical Expertise

• Strong incident response, threat analysis, and digital forensics knowledge

• Deep understanding of MITRE ATT&CK, CVE/CVSS, and exploitation mechanics

• Experience with SIEM, SOAR, XDR, and EDR platforms

• Familiarity with cloud security monitoring and response

• Knowledge of OT/ICS environments is advantageous

Certifications (Preferred)

CISSP, GCIH, GCFA, CHFI or equivalent industry certifications