Lead SecOps

Job Title: Lead SecOps Role Overview We are seeking a seasoned IT professional to take full ownership of our technology landscape. In this dual-focus role, you will be responsible for the end-to-end lifecycle of IT hardware and software while simultaneously architecting and enforcing our cybersecurity posture. You will ensure our systems are scalable, resilient, and defended against modern threats. Key Responsibilities 1.  Security Leadership Security Architecture: Design and implement a multi-layered security framework, including firewalls, EDR/MDR, and IAM (Identity and Access Management). Incident Response: Lead the response team during security breaches or vulnerabilities; conduct post-mortem analyses. Compliance & Audits: Ensure the organization meets industry standards (e.g., SOC2, ISO 27001, or GDPR). Conduct regular internal vulnerability assessments and penetration tests. Policy Development: Establish and enforce IT security policies, including Disaster Recovery (DR) and Business Continuity Plans (BCP). 2. Infrastructure & Asset Management Hardware Lifecycle: Oversee procurement, configuration, deployment, and maintenance of all hardware (servers, networking gear, laptops, and peripherals). Software Ecosystem: Manage enterprise software licensing, SaaS subscriptions, and deployment pipelines. Ensure all systems are patched and updated. Network Operations: Design and maintain robust LAN/WAN, VPN, and Wi-Fi architectures to ensure 99.9% uptime. Cloud & Virtualization: Administer cloud environments (Azure/AWS/GCP) and on-premise virtualization (VMware/Hyper-V). 3. Strategic Planning & Support Budgeting: Manage the IT budget, optimizing spend across hardware Capex and software Opex. Vendor Management: Act as the primary point of contact for ISPs, hardware vendors, and MSPs. Mentorship: Provide high-level technical escalation support and mentor junior staff or external service providers. Required Qualifications Experience: 7+ years in IT operations, with at least 3 years in a security-focused or leadership capacity. Education: Bachelor’s degree in Computer Science, Information Technology, or a related field. Technical Stack: Proficiency in Windows/Linux Server environments, Firewall, IIS Server environments Expertise in networking protocols (TCP/IP, DNS, VLANs, BGP). Hands-on experience with security tools (Sentinel, CrowdStrike, Splunk, etc.). Certifications (Preferred): Security: CISSP, CISM, or CEH. Infrastructure: CCNP (Cisco), MCSE, or Azure/AWS Solutions Architect. Soft Skills Problem Solving: Ability to think clearly under pressure during a system outage or security event. Communication: Able to translate complex technical risks into business language for executive leadership. Proactivity: A "security-first" mindset that anticipates vulnerabilities before they are exploited.