LSEG (London Stock Exchange Group) is more than a diversified global financial markets infrastructure and data business. We are dedicated, open-access partners with a dedication to excellence in delivering the services our customers expect from us. With extensive experience, deep knowledge and worldwide presence across financial markets, we enable businesses and economies around the world to fund innovation, manage risk and create jobs. It's how we've contributed to supporting the financial stability and growth of communities and economies globally for more than 300 years. Through a comprehensive suite of trusted financial market infrastructure services - and our open-access model - we provide the flexibility, stability and trust that enable our customers to pursue their ambitions with confidence and clarity.
LSEG is headquartered in the United Kingdom, with significant operations in 70 countries across EMEA, North America, Latin America and Asia Pacific. We employ 25,000 people globally, more than half located in Asia Pacific. LSEG's ticker symbol is LSEG.
Role Profile
The Security Analytics team sits within Security Operations and is responsible for the operation of LSEG's security observability and threat detection capabilities. Security Operations is a global 24/7 team containing among others the Global Security Operations Centre, Fraud Monitoring, Data Loss Prevention, Security Analytics & Automation, and Threat Intelligence functions. The Security Analytics Manager is responsible for leading a high-performance team of engineers to maintain and develop high quality security detection content, owning the security logging lifecycle, and operating the associated platforms including the Security Information and Event Management (SIEM) system. This role reports to the Senior Manager of Security Analytics & Automation.
Role Summary
The Cyber Security Team in LSEG is a highly transparent, adaptable, and effective team within the LSEG Technology function. We enable the organization to deliver against its strategic aims by reducing the cyber risk of significant security incidents and data breaches by continually working to improve the security posture of the organization.
You will join the Security Analytics & Automation team to lead the Security Analytics arm and build the next generation of security logging and detection capabilities at LSEG. In this role, you will be the performance manager for a small team of engineers, the technical owner of the team's platforms, and a lead technician. You will work closely with the Senior Manager of Security Analytics & Automation to define the platform and content strategy, and more broadly engage with other senior stakeholders across Security Operations and the wider technology and business teams to ensure the team meets its obligations and the needs of the GSOC.
This role requires a solid background in Security Operations, SIEM and security content, in conjunction with experience in people leadership and leading a highly performant service.
Key Responsibilities
- Lead and mentor a small team of cyber security content and platform engineers.
- Establish a high-performance attitude around SIEM and security observability and detection as a service.
- Represent the SIEM and Security Analytics function to internal stakeholders within and outside Cyber Security.
- Ensure the highest quality of content, platform performance and stability within the Security Analytics systems.
- Effectively measure and report on team and platform performance including detection false positive ratios, SLAs, and resource utilisation.
- Continuously drive improvements in content, capabilities, performance, and service to support Security Operations' mission more effectively.
- Establish an effective strategy for the management and growth of the Security Analytics platforms, content, coverage, and overall service.
- Bachelor's degree or equivalent in Information Technology, Cyber Security, or a related field.
- Proven experience in cyber security.
- Able to demonstrate strong team management and leadership skills.
- Able to demonstrate extensive expertise in using log monitoring technology and processes to log and detect anomalous behaviour in enterprise security data.
- Extensive experience in security detection content, including standard detection rules and use cases, as well as more advanced analytical methodology.
- Able to demonstrate a solid understanding of event management tools and processes.
- Able to effectively handle stakeholders and prioritise own and team time to deliver critical workstreams in a timely manner.
- Experience designing and implementing Key Performance Indicators & reports for consumption across multiple areas including up to CISO level.
- Highly desired: Experience in financial services or a highly regulated industry with a good understanding of regulatory requirements and industry best practices regarding security logging and detection.
Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership , Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.
Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.
LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.
We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone's race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other b