Manager - Security Operations - IT

Role Purpose:

Security Operations Manager

Security Operations Head reports to the General Manager IT while collaborating closely with the security architectures, IT GRC Specialists, IT Security analysts/incidents responders and other internal stakeholders to empower the business and continuously enhance the security posture of the organization to protect information and assets from unauthorized access, misuse, modification and destruction.

Role Details - Key Responsibilities and Accountabilities:

Role Summary:

- Oversee the operations of Information and Data security including business continuity, IT Projects and Program Management, threat hunting and Intelligence.

- Oversight, planning and execution of all required vulnerability audits, penetration tests or forensic IT audits or related investigations.

- Coordination of the IT Security Specialists activities and liaison to all stakeholders.

- IT Security Performance Measurement and develop security reporting metrics and KPI's.

- IT Security Policy, Procedure and Standards Implementation, IT Security Services delivery coordination and Operations.

- Monitor and Ensure adherence to regulatory compliance, governing information security and industry best practices.

- Coordinate with technology and business groups to assess, implement, and monitor IT-related security risks/hazards

- Work with security architects on providing active defense and proactive plans to security incidents.

- Partner with other functional groups to develop, manage, track, and analyze operational support structures, tools, methods and procedures and processes to gain maximum effectiveness, efficiency, and a quality customer experience.

- Anticipate industry future directions and relate those changes to current and future IT Security needs.

Processes and Procedures:

- Monitor, coach, support, motivate and develop team members to enable them to deliver to the best of their ability

- Work closely with internal senior stakeholders to ensure close collaboration in strategies

- Manages Manage the daily operations and effectiveness of the IT Security controls

- Develop staff of varying skill levels on both cybersecurity competencies/expertise and personal development. Guide in their continued growth and success as individuals and as a team.

- Participate in the development and tracking of key performance indicators (KPIs) related to IT Security operations, to benchmark and further enhance capabilities.

- Participate in internal assessments and tabletop exercises, and other activities that contribute to operational readiness.

- Benchmark and implement industry best practices to detect and mitigate potential threats

- Ensure platforms and processes are in compliance with all corporate and regulatory standards and requirements.

- Collaborate with management in developing technical direction, as well as assessing reasonable objectives and timelines.

- Lead the IT Security Operations team within fast-paced environment, while exercising composure, professionalism and teamwork during incidents and exercise discretion and confidentiality on a need-to-know basis when performing investigation

Behavioral Competencies:

Functional/Technical Competencies:

- Min Four (4) years in a management role leading a technical team

- Previous experience working in a Security Operations in an enterprise environment

- Bachelor's degree in Information Technology or equivalent experience. Master's degree is a plus.

- Achieved one or more relevant security certifications (CISSP, GCIA, GCIH, GMON, etc.)

- Strong leadership, problem solving and critical thinking skills. Ability to prioritize and execute autonomously.

- Ability to communicate effectively with all levels of staff, management, and clients both orally and in writing

- Ability to collaborate across the organization and operate effectively with multiple teams and solutions towards a shared goal

- Strong understanding of latest security principles and protocols

- Strong understanding of security operations technologies including SIEM and orchestration

- Knowledge in emerging technologies and tactics used within a SOC, and how they are applied to improve efficiency and effectiveness

- Understanding of tactics, techniques and procedures associated with cyber threats and the ability to develop relevant alerting, countermeasures, and threat hunting techniques.

Qualification, Experience & Skills:

Minimum Qualifications/education:

- Bachelor's degree in Computer Science, Engineering; or a Science degree. Masters is an added advantage

- CISA, CISM, CCSP or CISSP

Minimum experience:

- Minimum ten (10) years of experience in IT Security or IT with 4+ years of management experience

- Excellent interpersonal, leadership, presentation, and collaborative skills to effectively drive understanding and consensus among cross-functional teams on key security risks

- Demonstrated track record of successful project or operational delivery, technical aptitude, and problem-solving skills

- Incident management experience

Skills:

- Demonstrable IT Security Operations management experience and delivery of results.

- Prior Manage SOC management experience required.

- Well organized, systematic and rigorous approach to planning work and priorities.

- Proven relationship & stakeholder management including strong communicating & influencing skills

- Experience in problem solving & and understanding of the broader business context (business acumen)

- Proven experience in securing a public cloud environment (e.g. AWS, Azure).

- Experience with configuring and deploying CASB, DLP, WAF, IDS, and other security solutions.

- Experience utilizing Agile methodologies.

- Experience defining and managing a set of interconnected processes.

- Experience measuring and reporting on operational effectiveness and efficiency.

- Ability to communicate regularly and clearly to a wide variety of technical and non-technical audiences.

- Experience developing vision and strategy for a team.

- Resolving disputes within team and across functional boundaries.

- Negotiating rules of engagement.

- Defining clear roles and responsibilities and establish accountability.

- Setting goals and measure performance.

- Encouraging employee growth and development.

- Leading a moderately complex project to completion.