Cyber Security Operation Manager, £60-£79 DOE + Bonus
Hybrid working 1-2 day a week in the Glasgow office , G5 postcode
Permanent full time position, Monday–Friday, 8.30am - 5pm
About the role
Lead the team responsible for responding to security alerts, collaborating with subject matter experts and users to address these issues, and managing system vulnerabilities. Working closely with internal teams and external managed service partners to ensure that security events and alarms are fully investigated and resolved, while also driving the remediation of vulnerabilities across our systems.
Key responsibilities
- Continuous improvement and development of the cyber incident response plan, playbooks and processes that allow security operations team to respond to incidents rapidly and effectively.
- Effectively communicate and manage the MSSP
- Use purple team engagements to tune and validate detection tooling and response processes.
- Working collaboratively to remediate vulnerabilities identified through said penetration testing and vulnerability scanning.
- Planning and coordination of large-scale security incident response, remediation and recovery efforts, ensuring all incident are responded to in accordance to work instructions/remedial actions etc
- Manage the delivery of daily/weekly security reports. Ability to complete investigation reports in line with processes.
- Manage the delivery of vulnerability management and compliance scanning processes.
- Liaising with technical and non technical stakeholders across the business on reduction of vulnerabilities.
- Manage email security monitoring and response to phishing incidents. And bring awareness to staff on this issue.
- Ability to influence the business on selection of adequate KPIs and holding the team and stakeholders accountable to those.
Required experience and skills
- A robust understanding of:
- The typical techniques used by Threat Actors.
- Preventing and detecting common attack techniques, as outlined in the MITRE ATT&CK framework.
- Awareness of tuning and configuring cyber security tools, such us SIEM and EDR tooling, and how enterprise IT networks, Active Directory and Azure AD operate.
- Service management of key partners.
- People management inclusive of line management, coaching and mentoring.
The benefits
- 33 days’ annual leave
- £60k-£79k DOE
- Annual Bonus
- Flexible leave
- Generous employee discounts
- Private healthcare
- Workplace pension