TMF Group is a leading provider of administrative services, helping clients invest and operate safely around the world. As we’re a global company with 11,000+ colleagues based in over 125 offices across 87 jurisdictions, we actively seek out people with the talent and potential to flourish at TMF Group, whatever their background, and offer job opportunities to the broadest spectrum of people. Once on board we nurture and promote talented individuals, making sure that senior positions are open to all.

As the Manager – Incident Management, you will oversee the day-to-day operations of the Security Operations Center (SOC), ensuring efficient threat detection, incident response, and security monitoring. You will work closely with analysts, engineers, and leadership to investigate security incidents, fine-tune detection mechanisms, and enhance security processes. Your expertise in SIEM, threat intelligence, and security tools will help maintain the organization's security posture and mitigate cyber risks.

• Incident Response & Threat Management: Lead incident investigations, coordinate containment and remediation efforts, and ensure timely resolution of security threats.
• SOC Operations & Process Adherence: Manage 24/7 SOC operations, ensuring compliance with SLAs, security frameworks, and process improvements.
• Threat Detection & Monitoring: Oversee real-time threat monitoring, analyze anomalies, and fine-tune SIEM and security analytics for improved detection.
• Security Tools & Frameworks: Utilize and optimize SIEM, SOAR, EDR, DLP, IDS/IPS, Proxy, Firewalls, and forensic tools.
• Threat Intelligence & Mitigation: Track emerging threats and proactively implement defense strategies against cyberattacks.
• Incident Escalation & Reporting: Collaborate with internal and external stakeholders to escalate critical incidents and provide actionable reports to leadership.
• Security Playbooks & Procedures: Develop and refine SOC playbooks, use cases, and incident handling procedures.

• Cloud & Compliance Support: Ensure SOC processes align with security frameworks such as MITRE ATT&CK, Cyber Kill Chain, NIST, ISO 27001, and CIS Benchmark.

• Experience: 6 years of experience in cybersecurity, including SOC management and incident response.
• Certifications: Relevant certifications such as CISSP, CISM, CEH, OSCP, OSCE, GCIH or GIAC are advantageous.
• Leadership Skills: Strong leadership abilities to motivate and guide the SOC team.
• Collaboration: Ability to coordinate with other departments and stakeholders.
• Experience: 6-10 years in cybersecurity, with hands-on SOC management and incident response experience.
• Certifications: Preferred certifications include CEH, GCIH, CISSP, OSCP, or other relevant security certifications.
• Problem-Solving & Leadership: Ability to manage SOC analysts, improve security processes, and resolve security incidents effectively.
   

Key Knowledge and Experience  

• 6+ years of experience in SOC operations, incident response, and digital forensics.
• Proficiency in SIEM platforms (QRadar, Splunk, etc.), SOAR, EDR, DLP, IDS/IPS, Firewalls, and forensic tools.
• Strong understanding of cybersecurity frameworks like MITRE ATT&CK, Cyber Kill Chain, and NIST CSF.
• Hands-on experience in incident analysis, malware investigation, log analysis, and threat hunting.
• Knowledge of cloud security (AWS, Azure, GCP) including IAM, workload protection, and container security.
• Ability to create and refine SOC playbooks for consistent incident handling and response.
• Regulatory Compliance & Audit Experience (ISO 27001, PCI-DSS, NIST, GDPR, etc.).
• Strong analytical and communication skills to interact with both technical and non-technical stakeholders.

Pathways for career development

• Work with colleagues and clients around the world on interesting and challenging work;
• We provide internal career opportunities so you can take your career further within TMF;
• Continuous development is supported through global learning opportunities from the TMF Business Academy.

Making an impact

• You’ll be helping us to make the world a simpler place to do business for our clients;
• Through our corporate social responsibility programme, you’ll also be making a difference in the communities where we work.

A supportive environment

• Strong feedback culture to help build an engaging workplace;
• Our inclusive work environment allows you to work from our offices around the world, as well as from home, helping you find the right work-life balance to perform at your best.

Other Benefits

• Anniversary & Birthday Leave policy
• Be part of One TMF
• Paternity & Adoption leaves
• Salary advance policy
• Work flexibility – Hybrid work model
• Talk about growth opportunities (we invest in talent)
• Well-being initiatives