Skip to content
MVPeople Group Logo
MVPeopleGroup
SOC & Blue Team

Senior Director Security Operations

AmsterdamPermanentHybridManagementoverige
Apply nowAsk a question

About the assignment

You oversee all security operations and monitoring functions, reporting directly to the CISO or Chief Risk Officer. Your remit spans SOC leadership, threat intelligence, incident response, and security engineering.

You transform reactive monitoring into proactive threat hunting. You optimise detection logic, mentor senior analysts, and ensure 24/7 coverage meets SLAs. You balance operational excellence with strategic capability building.

Your impact: reduced MTTR, elevated threat visibility, resilient incident response, and a culture of continuous learning within your team.

Your responsibilities

  • Lead, mentor, and grow a senior security operations team (30+ staff across shifts and regions)
  • Design and oversee SOC architecture, tooling, and detection logic aligned with MITRE ATT&CK and NIST IR frameworks
  • Manage incident response processes; own escalation, coordination, and post-incident reviews
  • Drive threat intelligence integration and threat hunting programmes to uncover adversary activity
  • Report security metrics, KPIs, and board-level risk updates to executive leadership monthly
  • Evaluate, implement, and integrate SOC platforms (SIEM, EDR, SOAR) and third-party tools
  • Establish SLAs for alert triage, incident detection, and response; monitor adherence
  • Foster a security-first culture; conduct tabletop exercises and incident simulations

Tech Stack & Tools

Platforms & Tooling

SplunkMicrosoft SentinelIBM QRadarCrowdStrike FalconPalo Alto Cortex XDRElastic Stack

Frameworks & Standards

MITRE ATT&CKNIST Cybersecurity FrameworkNIST IRISO 27035SANS IR

Cloud & Infrastructure

Microsoft AzureAWS Security HubGoogle Cloud Security Command Center

Methodologies

Threat-led penetration testing (TLPT)Purple teamingIncident tabletop exercisesRoot cause analysis

Certifications (preferred)

CISSPCISMGCIAGCIHCertified Incident Handler

Must-haves

  • 10+ years in security operations, SOC leadership, or incident response roles
  • Hands-on experience managing SIEM, EDR, and SOAR platforms in large-scale environments
  • Proven track record leading and developing high-performing security teams (20+ members)
  • Deep understanding of threat detection, attack patterns, and incident response workflows
  • Board-level communication skills; ability to translate technical findings into executive risk narratives

Nice-to-haves

  • Experience with TLPT, threat hunting, or adversary-centric security models
  • Certification in CISSP, CISM, or GCIA
  • Familiarity with SOAR automation and orchestration in large environments
  • Background in purple teaming or collaborative security exercises

What we offer

  • Shape security strategy at the highest level; direct influence on enterprise risk
  • Lead a large, skilled team with budget for tools, training, and headcount
  • Work with cutting-edge detection and response platforms
  • Access to executive networks and board-level strategic planning
  • Structured career progression within the wider security leadership function
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Permanent

Location

Amsterdam

Work model

Hybrid

Level

Management

Industry

overige

Posted

24 March 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

IT Risk ManagementPermanent

Senior Security Risk & Resilience Consultant

AmsterdamHybrid
View vacancy
Change ManagementPermanent

Cybersecurity Specialist

AmsterdamHybrid
View vacancy
Application SecurityPermanent

Staff Application Security Engineer

AmsterdamHybrid
View vacancy
Apply now