Security Operations Manager - Anywhere in the UK

IT/Information/Cyber Security
Ref: 125 Date Posted: Tuesday 02 Aug 2022
LinkedIn ShareShare
Company:           Financial Services
Location:            Offices across the UK, hybrid working
Reports to:         Head of IT Security
Salary:                 Up to £110,000
Benefits:             Generous
The Role
A fantastic opportunity has arisen for a Security Operations Manager within our growing Digital Security & Resilience department. In this role, you will be leading our SecOps team that is spread across the UK, focused on maturing our proactive and reactive Detection and Response capabilities to ensure that organisation is resilient to the evolving cyber threats we face.
The most important element of Security Operations are our People.  Given working in Security is high pressure, a priority is looking after the health and well being of our People but also supporting their professional growth.
You will be our main escalation point and SME for Security Incident Management, so ideally you will have extensive experience of security incident planning, preparation and handling. The SecOps Manager is also service owner for our technical security controls, so you will be responsible for managing them through their asset lifecycle and maximising their effectiveness.
Responsibilities Include:
  • Operate as a key subject matter expert for Security Operations, including security incident response and cyber threat intelligence
  • Leading a team of security professionals that deliver operational and change activities
  • Lead security incident response planning and preparations that ensure the organisation is adequately resilient to cyber threats
  • Act as Lead Security Incident Handler for major security incidents
  • As Service Owner for our technical security controls, ensure they are appropriately managed through their lifecycle to ensure maximum effectiveness
  • Participate in industry cyber threat intelligence sharing initiatives
  • Preparing metric reports and dashboards for Security Operations
  • Mange relationships with resellers and vendors that provide us with security products and services
  • Own and develop a pragmatic strategy and roadmap for Security Operations that delivers maturity targets and ensures that we are delivering capabilities that are in line with our corporate values, compliance programs, laws and regulations, and enables the organisation to achieve its objectives
  • Build strong relationships with stakeholders across the business and 2nd Line of Defence including Data Protection, Risk and Compliance and Legal
  • Provide escalation path for Technology and business stakeholders in relation to security incidents and investigations
  • Ensure timely and accurate stakeholder notification and escalation of actual or potential regulatory violations
  • Provide advice and direction to projects and business initiatives that have security control, monitoring and response requirements
  • Influence and drive continuous improvement in our Security Operations capabilities
  • Collaborate with our GRC team in developing, improving and implementing information security standards
  • 3+ years experience in Security Operations
  • 2+ years as a security incident handler
  • 2+ years of leading a technical team
  • Experience of delivering and/or maturing a Security Operations programme
  • Financial services experience is beneficial but not an absolute requirement
  • Strong team leadership and coaching skills, ability to continually develop our People
  • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management and security incident management
  • Working knowledge of Mitre ATT&CK framework and its use as a key component of a proactive, behavioural based security detection service
  • Experience of managing vendor relationships
  • Ability to adapt to change quickly, work comfortably with ambiguity, and manage multiple tasks successfully
  • Ability to develop partnership-oriented relationships with technical and non-technical stakeholders across all levels of an organisation, especially as it relates to Security Detection and Response
  • Excellent strategic thinking and analytical skills to drive predictive modelling and solutions that decrease the likelihood of a cyber event
  • Ability to persuade and influence others on next steps
  • Ability to quickly come up to speed in any area, sufficient to speak with an informed opinion and create a credible impression with stakeholders
  • Must have strong verbal and written communication skills; interpersonal collaborative skills; and the ability to communicate security and risk-related concepts to technical and non-technical audience to stakeholders across all levels of an organisation