Domain Lead Group SOC (CISO)

bpost
15 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Tech stack

Identity and Access Management
Intrusion Detection and Prevention
Security Information and Event Management
Software Vulnerability Management
Mttr
Security Orchestration, Automation & Response

Job description

bpostgroup is seeking a Domain Lead Group SOC to build out & drive our central capabilities in cyber threat detection, incident response and vulnerability & exposure management.

This high-impact role sits at the heart of our Group Security Leadership Team, reporting to the Group Chief Security Technology Officer and working closely with CISO/CIO/CDO/Risk function stakeholders.

You'll lead strategy, operations and governance across all bpostgroup entities, ensuring we stay ahead of evolving threats while maintaining visibility and control across all entities.

Strategic Leadership

  • Define and implement the group-wide strategy for Threat & Response and Exposure Management
  • Align with Business Unit CISOs to ensure coverage, accountability, and improvement
  • Ensure compliance with NIS2, ISO 27001, DORA, and internal frameworks

Operational Excellence

  • Oversee daily SOC operations: monitoring, triage, incident response, post-incident reviews
  • Drive integration across network, endpoint, IAM, cloud, and OT domains
  • Consolidate exposure platforms for unified vulnerability and asset visibility
  • Lead EASM rollout and threat intelligence coordination

Governance & Reporting

  • Track KPIs/KRIs (MTTD, MTTR, patch compliance, exposure reduction)
  • Produce executive-level dashboards and incident governance reports
  • Manage MSSP relationships and SOC-related budgets

Team Leadership

  • Build and mentor a central expert team (SOC engineering, threat intel, vulnerability management)
  • Foster collaboration across virtual teams and entities
  • Actively contribute to the Group Security Leadership Team

Requirements

Do you have experience in SIEM?, * 6+ years in cybersecurity operations, including 3+ in SOC/IR/vulnerability leadership

  • Deep knowledge of SIEM, SOAR, EDR/XDR, threat intel platforms, and EASM tools
  • Experience in multi-entity or international environments
  • Strong grasp of cloud, network, and endpoint security
  • Familiarity with ISO 27k, NIST, NIS2, DORA
  • Certifications (CISSP, CISM, GCIA, GCIH) are a plus

Key Competencies

  • Crisis leadership under pressure
  • Strategic thinking and roadmap execution
  • Stakeholder alignment and influence
  • Analytical mindset and risk prioritisation
  • Clear communication with technical and executive audiences
  • Continuous improvement and professional integrity

Apply for this position