Security Operations Lead

Job title:Security Operations Lead

· Location: Barcelona, Spain.

About the job

At Sanofi, we’re committed to providing the next-gen healthcare that patients and customers need. It’s about harnessing data insights and leveraging AI responsibly to search deeper and solve sooner than ever before. Join our Cybersecurity team as Security Operations Lead and you can help make it happen. Your job? The Security Operations & SOC Lead will manage and oversee the key functions within the Security Architecture team, ensuring alignment with broader digital and cybersecurity teams.

Our Security Operations & SOC team, reporting directly to the CISO alongside the Security Architecture and Governance, Risk, and Compliance teams, plays a pivotal role in maintaining and enhancing the security posture of our organization. Under the leadership of the Security Operations & SOC Lead, this team ensures our organization's resilience against cybersecurity threats and incidents.

At Sanofi Consumer Healthcare, we build trusted and loved brands that connect with hundreds of millions of consumers worldwide. Our mission is to enable better self-care for individuals and communities, while also contributing to a healthier planet. We strive to act as a force for good by integrating sustainability along our business and employees’ mission and operate responsibly from both a social and environmental point of view. To achieve this, we need people who can shape the future of our business and help us on our journey to becoming the best fast-moving consumer healthcare company in and for the world.

Main responsibilities:

This managerial role focuses on guiding and supporting a team of 4 FTEs in the following key areas:

• Security Operations & SOC Management:

  • Manage the Security Operations team and ensure alignment with other teams in digital security/broader IT.

  • Oversee the external SOC team to ensure effective resolution of problems and events across the organization with multiple daily check-ins.

  • Coordinate with and manage the external SOC on the resolution of issues.

  • Manage the team responsible for protection and monitoring, major incident response, vulnerability management, and asset management.

Specific responsibilities of this role by team function include:

• Protection & Monitoring:

  • Manage the automation of responses to basic security events across deployed technologies, driving continuous improvement.

  • Oversee the generation of insights through operational intelligence (e.g., forensics, simulation).

  • Ensure provisioning & de-provisioning of solutions and manage change control.

​

• Major Incident Response:

  • Create and maintain IR playbooks, including the documentation of emergency scenarios and business impact analysis.

  • Coordinate red/blue/purple teams and/or war gaming to test IR response mechanisms at least every 12 months and update response plans based on findings.

  • Manage event monitoring, investigation, discovery support, and resolution of cybersecurity incidents.

​

• Vulnerability Management:

  • Oversee the scanning for vulnerabilities across the organization on an ongoing basis.

  • Drive the resolution of vulnerability issues via a centralized VA/VM solution.

​

• Asset Management:

  • Coordinate with other teams for the management, including appropriate classification, specification, and funding of protective controls, of IT/OT assets inventory. This includes physical assets (e.g., servers, networks, endpoints) ensuring data is up to date and patched appropriately.

  • Oversee the integration and operational use of asset management information with IR and SOC.

About you

• Experience:

  • 10+ years of professional experience (equivalent combination of experience and education accepted)In-depth knowledge of cybersecurity principles, practices, and technologies across digital domains (network, cloud, endpoint, applications, data).

  • Proven experience in managing cybersecurity teams, with a focus on security operations and SOC management.Leading teams through empowerment. Experience managing large, outsourced cybersecurity teams, ensuring seamless operations and effective collaboration.

  • Demonstrated ability to oversee the design and implementation of security solutions in line with organizational objectives.

  • Extensive experience in coordinating with external SOC teams and ensuring effective incident resolution.

• Soft and technical skills:

  • Proven digital leadership and people management, recruiting and development skills; ability to build, develop & lead a team to achieve assigned outcomes.

  • Broad experience in working in large digital teams, with an understanding of how digital and business processes are linked.

  • Project management skills / experience in supporting transformations in digital is essential; the ability to work collaboratively within and across different digital and business teams to design and implement solutions with global impact. Experience with AGILE or similar project management frameworks.

  • High level of proficiency in Sentinel and working knowledge of common information security management frameworks (ISO/IEC 27001, ITIL, NIST, NISD, CISSP/CCSP, QxP, CIS20).

​

• Education and languages:

  • Bachelor’s and master’s degree (preferred) in any of the following fields of study: Information Technology, Computer Science, Cybersecurity or Information Security. Advanced level of English.

Why choose us?

• Bring the miracles of science to life alongside a supportive, future-focused team.

• Discover endless opportunities to grow your talent and drive your career, whether it’s through a promotion or lateral move, at home or internationally.

• Enjoy a thoughtful, well-crafted rewards package that recognizes your contribution and amplifies your impact.

• Take good care of yourself and your family, with a wide range of health and wellbeing benefits including high-quality healthcare, prevention and wellness programs and at least 14 weeks’ gender-neutral parental leave.