JOB PROFILE
As a Security Operations Manager, you will lead our Security Operations Centre, Application Security, and Security Engineering teams. The successful candidate will play a crucial role in continuing to improve organizational maturity in line with our existing ISO and ISO certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies to protect critical assets and ensure operational resilience
KEY DUTIES AND RESPONSIBILITIES
· Manage the day-to-day activities of the Security Operations Centre (SOC) and Security Engineering teams.· Produce reports on key security metrics across Security Operations, Application Security and Vulnerability Management.· Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans of team members.· Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO standards.· Participate in Steering groups for Identity and Access Management and Data Protection · Setting and aligning team objectives and tasks to help achieve the overall Information Security and Compliance function’s strategy and goals· Participate in Quarterly Business Reviews with our security tooling vendors. Providing feedback to the vendors on product features, feature requests, SLA and reporting requirements· Coordinate with different teams to ensure the organization’s information security posture is maintained and improved. · Conduct regular Technical Readiness Reviews and risk assessments to identify potential vulnerabilities, risks and implement corrective actions in planned changes to applications, environments, and configurations· Participate in the Request For Information process by providing technical responses to questions raised by existing and prospective customers. · Provide leadership and technical guidance to the security team members.· Manage and oversee security incident investigations alongside the Security Incident specialist and events to protect corporate IT assets, including intellectual property, regulated data, and the company’s reputation.· Monitor and analyse security alerts and distribute them to the appropriate teams for resolution.· Report on key performance indicators and trends that are relevant to the company’s information security.
The responsibilities detailed above are not exhaustive and you may be requested to take on additional responsibilities deemed as reasonable by their direct line manager.
SKILLS AND QUALIFICATIONS
Essential Qualifications and Experience:
· Professional security management certification, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.· Proven experience in managing security operations teams in a similar industry.· Familiarity with SOC2, PCI-DSS, ISO and ISO standards.
Desirable Qualifications:
· Bachelor’s or masters degree in CyberSecurity, Computer Science, Information Technology, or a related field · Cloud security qualifications such as ISC2 CCSP, CSA CCSK and AWS Security Speciality · ISO Lead Implementor· Strong knowledge of cloud and on-premises technology environments, including information security, physical security solutions.· Financial Industry regulations (UK and Europe)· Excellent leadership and team management skills.· Strong problem-solving skills with the ability to make sound decisions in emergency situations.· Excellent communication skills with the ability to explain complex security issues to non-technical staff.
BENEFITS
• Competitive Salary.• Company Laptop supplied.• Bonus Scheme.• 25 Days Annual Leave (plus bank holidays).• Hybrid working model.• Healthcare & Company Pension.• Cycle to work and Wellbeing Programme.• Global Company gatherings and events.• E-learning and excellent career progression opportunities.•