Job Description Head of Cyber Security Operations Centre – London (hybrid / remote) TeamCandour have partnered with a global financial services player to source an experienced Head of Cyber Security Operations Centre (SOC) to head up their global cyber operations. The Role The role leads the largest proportion of the Cybersecurity function and needs a leader who can motivate and inspire their team to achieve technical excellence and never settle for average. You will be responsible for leading a multidisciplinary team consisting of Red Team, Blue Team, Security Engineers and Service Delivery leads. Technical knowledge and experience of both Red and Blue Team activities is essential to the success of this role. You will need to work closely with the Cyber Delivery Lead to ensure requirements and roadmap capabilities are clearly defined and planned. You will also be responsible for managing third party service providers in our partner ecosystem. Key Responsibilities Responsible for the end-to-end delivery of cybersecurity operations for the business. Build, develop and maintain a roadmap of operational security capabilities for the Fusion Centre, based on agile and continuous improvement processes. Develop, implement, test and maintain our cyber incident response processes and procedures - including the timely triage, analysis, containment, eradication and recovery from an incident. Lead our initial response to security incidents, and escalate accordingly. Communicate with executives on active incidents, and be able to clearly articulate complex technical details to audiences of varying technical understanding. Provide technical leadership to a multidisciplinary team of security analysts (Red and Blue), engineers and service delivery managers. Design, deliver and manage cyber related exercises such as table tops and cyber ranges. Measure the effectiveness and performance of operational security controls through KRI and KPI metrics – ensuring operational readiness and resilience are maintained to acceptable levels. Candidate Profile Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO, CIS, etc.). Excellent knowledge of penetration testing tools, and practices for ethical hacking. Excellent knowledge of Security Information and Event Management technologies and processes. Excellent knowledge of Threat and Vulnerability Management technologies and processes. Strong knowledge of Threat Intelligence systems and processes. Strong knowledge of security engineering practices and procedures. Strong knowledge of security technologies, tools, and methodologies (e.g., firewalls, encryption, penetration testing, etc.). Familiar with financial services (preferably insurance) security standards and regulatory requirements. Previous experience leading and managing a Security Operations Centre (preferably a next generation Cyber Fusion Centre), or a global Cyber Incident Response Team (CIRT). Curious? Drop us a line and we can arrange a chat to go through the finer details.