Lead It Security Manager

Lead IT Security Manager
Permanent
Birmingham - 2 Days per week on site
48,900 - 61,140 per annum
My client in the Rail industry are looking for a Lead IT Security Manager to join their fast-paced Operations team on a permanent basis.
The Lead IT Security Manager is responsible for is the effective management of the Security Operations pillar within the IT Security, Compliance & Identity function. This includes Security technology and Security Operations Centre management.
Key focus areas for this role, the ideal candidate will have experience in each of the below;

• Threat & Vulnerability Management
• Security Operations Centre - 24/7 Outsourced
• Web & Content Filtering - ProofPoint, Zscaler, etc.
• Endpoint Security
• Infrastructure Security

Accountabilities
Lead the Security Operations pillar, determining and delivering requirements, methods, and tools to provide value and reduce risk across proactive monitoring, incident response, threat management and vulnerability management (among other activity) .
Lead the creation and maintenance of Security Operations policy, standards procedures, and documentation (including playbooks and guidance).
Manage the application and compliance of security operations procedures, reviewing actual and potential security breaches, and ensuring their investigation.
Lead the Security Operations team's response to incidents, recommending actions and appropriate control improvements.
Monitor the external environment to gather intelligence on emerging technologies, documenting impacts, threats, and opportunities to IT.
Provide expert advice on threat intelligence activities, identifying which threat categories are most dangerous to the organization and how to defend against them.
Manage vulnerability assessment activities within company IT, providing expert advice where necessary in the review of vulnerability assessment tools and techniques.
Develop, maintain, and test Security Operations' incident management procedures, investigating escalated incidents and facilitating recovery post-incident resolution.
Lead Security Operations risk management activities, leading on the identification of risks and vulnerabilities and assessment of their impacts.
Manage and oversee the day-to-day activity of the SOC supplier who will deliver security capabilities, communicating their activity to relevant teams.
Manage the design, delivery, maintenance, and continuous improvement of the IT Security Ops capabilities in line with business needs.
Manage the Security Operations Centre (SOC) capability, ensuring effective protection, defence, and response to IT security risks.
Promote the Security, Compliance & Identity function to develop and enhance the team profile to develop enduring relationships with stakeholders and teams.
Implement a multi-year Security roadmap that provides proactive capabilities which enable business objectives.
Actively promote and embed Equality Diversity and Inclusion (EDI) in all your work, and support and comply with all organisational initiatives, policies and procedures on EDI.
Skills:
Relationship Building. Ability to develop and maintain strong relationships with internal and external stakeholders.
Security Operations. Ability provide leadership for live security incidents and helping conduct robust investigations in order to identify corrective actions and see them through to completion.
Threat Intelligence. Ability to provide guidance on proactive threat identification, analysis, and mitigation. Skilled in actionable intelligence, industry sources, and general awareness of threat landscape.
Vulnerability Assessment. Ability to identify and classify security vulnerabilities in networks, systems and applications and mitigating or eliminating their impact.
Risk Management. Ability to identify IT security operations risks and the delivery of audit remediation activities.
Emerging technology monitoring. Ability to identify and assess new and emerging technologies, products, services, methods and techniques.
Knowledge:
Knowledge of IT Service Frameworks, methodologies, and best practice such as ITIL v4 and Agile.
Knowledge of day-to-day activities and best practice within a SOC.
Knowledge of technical security such as firewalls, network security groups, and access controls.
Type of Experience:
Experience of leading a team through the full IT service lifecycle, enhancing security posture, and evolving capabilities via continual service improvement.
Experience of leading live cyber incidents and the remediation actions.
Experience of partnering with supplier teams for managed services delivery of improvements.
Experience across the full IT security spectrum (software, servers, infrastructure, and networks).
Experience designing and implementing secure systems, leading review where necessary of complex security issues.
Experience of enabling and informing risk-based decisions.
Experience dealing with the security implications of transformation and day-to-day product changes.
Experience working with system architectures, displaying a strong understanding of the impact of vulnerabilities on varied systems

Disclaimer:

This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.