ABOUT US
We’re building Tomorrow’s Connections Today, bringing people together through the power of our technology.
Liberty Global is a world leader in converged broadband, video and mobile communications and an active investor in cutting-edge infrastructure, content and technology ventures.
With our investments in fibre-based and 5G networks we play a vital role in society, currently providing over 85 million fixed and mobile connections and rolling out the next generation of pro
ducts and services, while readying our networks for 10 Gbps and beyond.
We’re creating national champions, combining the best broadband and mobile networks under brands such as Virgin Media-02 in the UK, VodafoneZiggo in The Netherlands, Telenet in Belgium, Sunrise in Switzerland, Virgin Media in Ireland and UPC in Slovakia.
Liberty Global Ventures, our global investment arm, has a portfolio of more than 75 companies and funds across content, technology and infrastructure, including strategic stakes in ITV, Univision, Plume, Lionsgate and the Formula E racing series.
Our scale enables us to transfer knowledge and expertise across our operations and investments, creating a d
ynamic family of brands united in the pursuit of innovation and excellence.
And we’re prioritising diversity, equity and inclusion in our workplace and communities, while reducing our impact on the environment. We are using technology as a force for good; for our people, our partners and the planet.
JOB PURPOSE
With a desire to drive the future of our Managed Detection and Response capability, you will bring experience and knowledge in:
Providing Managed Detection and Response as a Managed Services Provider Delivering effective Cyber Incident Management and Response Communicating effectively with technical specialists, leaders and peers Leadership and people management skills Strategic Problem solver and Motivator Demonstrable experience of managing 3rd Party Managed Services Providers
The Director Managed, Detection and Response is responsible for working with the VP Group Operational Security and Director Threat and Vulnerability Management for developing the strategy and vision for Managed, Detection and Response, and the execution of the responsibilities within the Proactive Analysis and Cyber Incident Management and Response functions.
The Security Tooling team is a pivotal support function that manages the end to end operations of Group Security’s tooling and works with the Security Architecture team to ensure the tooling is inline with the overall Security Strategy.
KEY ACCOUNTABILITIES
This role is accountable for the key security operations areas, including but not limited to, Incident Management, Incident Response, Proactive Security Monitoring, Threat Hunting, Security Incident Analytics, Incident Trend Analysts and Reporting. This individual will manage the relationships with key partners across the Liberty Global, Retained Markets and Joint Ventures providing efficient and consistent security operations services through continuous improvement opportunities and creating better lines of detection and response that meet the ever growing needs of the business. This role needs to have a clear line of sight on the issues and gaps resulting from the security operations activities and wider GSOC capabilities to suggest innovative and faster ways addressing incident response. The role is also responsible for using the analytics to provide insight to other security leaders in order to enhance policies and processes related to Risk Management, Security Program Management, and Security Governance. All this whilst keeping in mind the strategic intent to ultimately provided these services to our B2B markets.
1. Lead day-to-day operations of Proactive Analysis, Security Tooling and CERT teams including oversight and direction of complex cyber security incidents and investigations
2. Establish and maintain partnerships across Liberty Global, retained markers, joint ventures, external vendors and partners
3. Manage the implementation of the strategic planning in-line with the overall company strategy and Security Roadmap to provide future proofed service delivery
4. Drive a multi-year strategy for continuous process and technology improvement
5. Provide leadership and guidance in assisting IT and security personnel in the collection and review of artifacts relating to investigations
6. Responsible for using a data driven approach to ensure efficient and effective operations through metrics and dashboarding
7. Collaborate with retain markers, joint ventures, third parties, business process owners and other partners to ensure consistency and effectiveness of Security Operations activities
8. Proactively identify security monitoring and process gaps and work with colleagues to expand visibility in identified areas
9. Work with Security engineering and Security architecture teams to seek new and innovative approaches to prevent and identify cyber threats using endpoint, network and cloud security solutions and emerging security technologies
10. Implement metrics to directly support executive-level briefings (daily, weekly, monthly), measuring operational performance, and supervising incident trends across Liberty Global
11. Mentor and foster the growth of a team that includes security practitioners at all career levels
12. Ensure that all documents, workflows, and processes remain accurate and up-to-date
13. Supervise the planning, and directing of all activities across the teams inline with the budget
14. Lead all people management facets including recruiting, hiring, performance management, etc
15. Effective management of 3rd Party Managed Service provider supporting Security Operations
16. Provide input on customer needs, competitive benchmarks, and market trends to advise product development and marketing strategies.
17. Collaborate with Technology and AI teams to build proof of concepts for CX improving functionality, and to ensure that CX is always accounted for in AI and Innovation-driven concepts. Take over and transition proven concepts into demand scoping towards our platform vendors for modernization of solutions and driving their implementation
KNOWLEDGE & EXPERIENCE
Skills & Abilities:
18. Extensive cyber security experience coupled with good experience in incident response or penetration testing with shown experience handling cyber threats from external and internal sources
19. Experience in a Managed Security Operations Centre or similar incident command organisation or reporting structure and in security solution design and security architecture experience; working as a security architect with business partners
20. Detailed understanding of the MITRE ATT&CK and D3fend Framework and the Cyber Kill Chain
21. Detailed understanding of using Cyber Threat Intelligence in support of a Managed Security Service organisation
22. An understanding of attacks impacting a cloud-native environment (OCI, GCP, AWS and Azure)
23. Ability to lead people to think critically by guiding them without doing the work for them
24. Possess a demonstrated ability to speak with people with varying knowledge of Cyber Security concepts
25. Outstanding written and verbal communication skills and ability to clearly articulate to senior management
26. Capability to look at a process to find opportunities for cycle-time reduction and automation opportunities
27. Good interpersonal skills and ability to see things through the “customer’s” eyes
28. Experience with network flow data/tools and analysing high volumes of logs and related sources to support incident investigations
29. Ability to describe cyber risk from an operating perspective to provide consulting guidance and build relationships.
30. Ability to delegate work to team members and provide clear and effective guidance on implementation of processes
31. Demonstrated understanding of Cyber Threat Intelligence Concepts, Indicators of Compromise (IoCs), Tactics, Techniques, Procedures (TTP) and life cycle of network threats, attacks, and methods of exploitation
32. Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defence-in-depth, and common security elements
33. Understanding the best practices, control frameworks, and applicable legal and regulatory requirements data privacy and breach notification laws, ISO 27001, NIST CSF and SP 800-53, CIS, CSA CCM, PCI DSS, etc.
34. Demonstrable strong leadership skills, including the ability to develop, mentor and coach others
35. Experience in working in large or federated enterprises, preferably in the Telecoms industry and operating as a Managed Services Provider
PREFERRED EDUCATION/ QUALIFICATIONS:
36. Bachelor’s degree in information systems or a related discipline, or equivalent experience
BENEFITS:
37. Competitive salary + Eligibility for our Bonus Plan
38. 25 days annual leave with the option to purchase 5 more
39. 24 hours of Volunteering Time Off
40. Free access to LinkedIn Learning to continue to develop and grow your career with us
41. Free premium subscription to Calm – a renowned well-being & meditation app
42. Company Laptop, Mobile and Phone Subscription
43. Company Pension Contributions
44. Access to personal medical and dental insurance (UK) / Subsidies on Health Insurance (NL).
45. Access to discounts on superfast fibre broadband subscriptions.
Liberty Global is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for our people. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process. We’re 100% committed to having a workforce that represents every part of our society. So we’re keen to hear from candidates of all background and circumstances.