Open to opportunities

viktor smart

@viktorsmart

Message

Hands-on SOC Team Lead and incident response specialist with deep threat expertise.

United Kingdom

Message

What I'm looking for

I seek a hands-on leadership role in a mature SOC where I can drive detection, incident response, mentor analysts, implement automation and strengthen threat intelligence integration.

I am a hands-on SOC Team Lead and senior incident responder with extensive experience leading 24/7 security operations and incident response teams across enterprise environments.

I have led teams of up to 10 analysts, acted as Incident Commander for complex incidents, and built playbooks, runbooks and automation to improve detection and response. My work spans SIEM tuning, cloud threat hunting, WAF rule implementation and CTI integration.

Throughout my career I have designed and deployed SIEM use cases, integrated IoCs from multiple CTI sources, implemented dynamic malware analysis (Cuckoo), and used tools including Chronicle, LogRhythm, Graylog, Splunk and QRadar to strengthen security posture.

I am pragmatic, mentoring-focused and results-driven: I deliver measurable SOC performance improvements, coach analysts, collaborate with cross-functional stakeholders, and continuously refine processes and tooling to reduce risk.

Experience

Work history, roles, and key accomplishments

Current

SOC Team Lead

Current

Admiral PLC

Jun 2023 - Present (2 years 5 months)

Led and managed a 10-person 24/7 SOC, improving incident lifecycle management and implementing SIEM (Chronicle) optimizations, automation, and KPI reporting to senior management.

SOC Incident Response Playbook Development Automation Threat Hunting KPIs

Senior Incident Responder

Twilio

May 2020 - Jun 2023 (3 years 1 month)

Led a team of 4 incident responders, acted as Incident Commander for complex incidents, executed cloud threat hunting, and implemented WAF rules and runbook improvements to strengthen detection and response.

Incident Response WAF Team Leadership THREAT RESEARCH Mentoring

Senior Security Analyst

Getronics

Jul 2017 - May 2020 (2 years 10 months)

Provided tier-3 incident response, led threat hunting and forensic investigations (SIFT), developed SIEM use cases based on MITRE ATT&CK, and automated alarm and response processes to reduce time-to-detection.

Incident Response Threat Hunting CTI MISP

Senior Security Analyst

Camelot Group PLC

Oct 2016 - May 2017 (7 months)

Monitored global cyber threats, integrated IoCs into IPS/IDS/SIEM (LogRhythm/Graylog), and acted as third-tier analyst driving complex incident resolution and SIEM rule development.

SIEM Graylog IDS Incident Response OSINT

Security Analyst

Aviva

Aug 2015 - Sep 2016 (1 year 1 month)

Developed a global threat intelligence platform, supported SOC build-out, managed Sourcefire/FireAMP and contributed to SIEM (QRadar) log and alert management to improve detection and malware response.

Threat Intelligence Sourcefire FireAMP QRadar Web Filtering Malware Analysis

Security Analyst

Net-a-Porter.com

Jul 2013 - Aug 2015 (2 years 1 month)

Monitored IDS (Snort), performed intrusion detection, vulnerability assessments, Windows hardening (CIS), DLP and integrated tools (AirWatch, Nessus) to enhance corporate security posture.

IDS (Snort)Intrusion Detection Vulnerability Assessment Nessus Patch Management

Desktop Support Technician

Net-a-Porter.com

Apr 2010 - Jul 2013 (3 years 3 months)

Provided 1st/2nd line Windows and Mac support, managed Mac server tasks, OS/hardware upgrades and user administration to maintain desktop estate reliability.

Desktop Support MacOS Windows User Support Troubleshooting Centrify

Desktop Support

lastminute.com

Feb 2008 - Dec 2009 (1 year 10 months)

Provided 1st/2nd line desktop and service desk support including executive support and Avaya phone system administration to ensure business continuity.

Service Desk Desktop Support Executive Support Avaya

Trade Floor Support

Merrill Lynch

Jul 2007 - Dec 2007 (5 months)

Provided trade floor technical support for hardware/software and incident investigation, delivering fast resolution in a high-pressure trading environment.

Trading Support Hardware Software support Executive Support

Housekeeper

Whitbread Group PLC

Jun 2006 - Sep 2007 (1 year 3 months)

Performed cleaning and room preparation at Premier Travel Inn, supporting team operations and peak-period back-up to maintain service standards.

Teamwork Time Management Customer Service

Network Engineer

Rosinter Restaurants

Feb 2003 - Feb 2006 (3 years)

Provided IT support and maintenance, incident logging and resolution, and executive/finance team technical assistance to ensure operational IT continuity.

IT Support Network Support client support Troubleshooting

Computer Technician

Eko Veikals

Aug 2001 - Jan 2003 (1 year 5 months)

Prepared IT equipment for client delivery and provided general IT support and problem resolution to maintain service quality.

Hardware Preparation IT Support Troubleshooting Customer Service

Computer Technician

Omega Service

Feb 2001 - Nov 2002 (1 year 9 months)

Provided weekend IT support including equipment preparation and general troubleshooting to support client deliveries and operations.

IT Support Hardware Preparation Troubleshooting Customer Service Part Time Support

Education

Degrees, certifications, and relevant coursework

SANS Institute

Cybersecurity

2013 - 2017

Completed multiple SANS courses including SEC401 (self-study), SEC504, and FOR578 between 2013 and 2017 for professional development in cybersecurity and threat intelligence.