SENIOR CYBER INCIDENT MANAGEMENT, OPERATIONS & RESPONSE SPECIALIST - VOIS

## Who we are VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation. As the largest shared services organisation in the global telco industry with 30,000 FTE, our portfolio of next-generation solutions and services are designed in partnership with customers across Vodafone Group, local markets, and partner markets to simplify and drive growth. With our strategic partner Accenture, we work alongside our Vodafone customers, other Telco and tech companies to drive transformation, meet the challenges of our industry and ensure we stay relevant and resilient. This partnership is a unique, industry-first model which brings together the best of in-house and 3rd party capability. We work with customers across 28 countries from 10 VOIS locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, UK, Germany, Ireland, and with a network of teams in Czech Republic, Italy, Greece, and Portugal. #VOIS #BeUnrivalled #CreateTheFuture ## About this Role We are seeking a Senior Cyber Incident Management, Operations and Response Specialist to provide expert-level cyber defence capability within the Cyber Security Operations Centre (CSOC). This role is accountable for leading complex security investigations, accurately triaging alerts, improving detection quality, mentoring analysts, and strengthening operational processes to reduce risk to Vodafone. The role plays a critical part in protecting enterprise systems, improving response effectiveness, and enhancing detection maturity across global environments. ## What you’ll do * Investigate, analyse and accurately triage security alerts and incidents across CSOC platforms * Perform deep-dive incident analysis, identify root causes and assess business risk * Lead daily stand-ups and act as an escalation point for functional and technical queries from Cyber Defence Analysts * Produce clear, high-quality technical and operational reports for stakeholders * Maintain and continuously enhance alert triage quality and operational deliverables * Develop, document and maintain playbooks, runbooks, SOPs, KEDB articles and knowledge base content * Proactively fine-tune detection rules and identify opportunities for alert reduction and effort optimisation * Monitor and protect digital systems against unauthorised access, modification or data loss * Analyse security breaches and recommend appropriate tools, controls and countermeasures * Collaborate closely with Local Market CSIRT teams to manage ongoing cases and reduce backlog * Conduct brown bag sessions and provide structured mentoring for team members and new joiners * Act as technical subject matter expert for alerting, detection and triage playbooks * Identify volumetric alerts and drive mitigation strategies across people, process and technology * Participate in defining and improving detection and alerting capabilities * Create detailed threat and alert analysis reports and share findings with resolver, content creation, threat intelligence and incident management teams ## Who you are * You have 7+ years of experience in a Security Operations Centre, operating at senior analyst level * You possess strong expertise in SIEM platforms (such as ArcSight, Splunk, QRadar or LogRhythm) * You have proven experience in security incident investigation, response and management * You understand malware behaviour, advanced persistent threats and complex attack techniques * You are skilled in SIEM correlation logic, rule tuning and detection optimisation * You can create structured workflows, playbooks and triage processes * You are confident mentoring, coaching and motivating analysts within the team * You have strong written and verbal communication skills, including the ability to present technical findings to senior stakeholders * You hold a degree in Computer Science, Information Technology, Engineering or a related field * You bring prior experience in cloud technologies and the information security domain * Industry-recognised certifications such as SANS, CCNA CyberOps or Security+ are advantageous ## Not a perfect fit? Concerned you may not meet every requirement? Vodafone is committed to creating an inclusive workplace where everyone can thrive. If you are excited about this role but your experience does not align exactly with every aspect of the job description, you are encouraged to apply. You may be the right candidate for this or another opportunity, and the recruitment team will support you in exploring where your skills fit best. ## What's in it for you * Opportunity to work at the forefront of cyber defence within a global telecommunications organisation * Exposure to complex threat landscapes and enterprise-scale security environments * A role that combines technical depth with leadership, mentoring and operational ownership * The ability to influence detection strategy, incident response quality and process maturity ## What skills you will learn * Advanced threat detection and triage optimisation techniques * Improved leadership and shift management skills within a SOC environment * Deeper expertise in incident response coordination and detection capability enhancement * Stronger communication skills for translating technical risk into business impact ## VOIS Equal Opportunity Employer Commitment Vodafone recognises and celebrates the value of diversity in building a workforce that reflects the customers and communities it serves. No form of discrimination is tolerated. This includes, but is not limited to, discrimination based on race, colour, age, veteran status, gender identity, gender expression, sexual orientation, pregnancy, maternity or parental status, ethnicity, disability, religion or belief, political affiliation, trade union membership, nationality, citizenship, indigenous status, medical condition, HIV status, neurodiversity, social origin, cultural background, marital or civil partnership status, or socio-economic background. ## Join Us At Vodafone, we’re working hard to build a better future. A more connected, inclusive and sustainable world. As a dynamic global community, it's our human spirit, together with technology, that empowers us to achieve this. We challenge and innovate in order to connect people, businesses, and communities across the world. Delighting our customers and earning their loyalty drive us, and we experiment, learn fast and get it done, together. With us, you can truly be yourself and belong, share inspiration, embrace new opportunities, thrive, and make a real difference. ## Alert Apply for Vodafone jobs only through the official Vodafone Careers website to avoid job scams and fraud.” #JDEnhancedByTARA ## Follow us on social media and #StayConnected * LinkedIn: https://www.linkedin.com/company/vois/ * Facebook: https://www.facebook.com/voisglobal * Instagram: https://www.instagram.com/voisglobal/ * You can also chat with our employees to learn more about our projects: https://lnkd.in/dpkrcvR2