Security Operations Manager

My client a leading Insurance Group is currently looking for Security Operations Manager.

The Security Operations Manager will be responsible for overseeing the Security Operations team, which deploys process and technology to continuously monitor and improve my client's security position, while preventing, detecting, analysing, and responding to cybersecurity incidents.

This role will also deputise for the Information Security Officer, with the potential to develop into this role.

Primary Responsibilities;

• Oversee the design and delivery of Security Operations (including SOC) strategy and operating model
• Lead and supervise the Security Operations team, including hiring, training, and managing both permanent and temporary staff
• Direct the investigation of any suspicious activities and/or security events from any sources to ensure they're contained, remediated, and reported as detailed within the Security Incident Response framework
• Manage and continually improve the integration, efficiency, and effectiveness of 3rd party managed SOC solution to ensure the appropriate events and logs are being collected, analysed, and alerted on, for both local and cloud-based events
• Improve and regularly test the effectiveness of the Security Incident Response framework
• Develop, document and continually improve a formal threat intelligence program
• Deputise for the Information Security Officer with the potential to develop into that role
• Support the Information Security Officer by providing regular updates on key operational security metrics and emerging risks.

RELEVANT EXPERIENCE

Essential

• Experience working in a Security Operations function
• Strong knowledge of the Wintel environment at an infrastructure level, most importantly from a networking perspective
• Strong, proven experience managing a technical security incident response program

Desirable

• Experience with ISO 27001 or NIST Cybersecurity Framework

EDUCATION AND QUALIFICATIONS

Desirable

• Incident Response - SANS GIAC Incident Response or similar
• Networking - CCNP or equivalent
• Cloud Security - CCSP, CCSK, PCSM, CCSS, and/or any specific Cloud Security certificate (e.g. Google, AWS, Azure)
• General Security - CISSP, CISM
• Any SecOps related certifications, including security vendor certifications

PERSONAL SKILLS

• Structured, organised, self-motivated and proactive
• Fluent in English, written and verbal
• Excellent presentation skills, both verbal and written
• Strong inter-personal and communications skills
• Comfortable liaising at all levels, including senior stakeholders and external entities
• Good at working both independently and in teams
• Well-presented and business-like
• Adaptable to a pressured environment