- The Security Operations Centre (SOC) Manager will plan, direct, and control the SOC functions and operations. Ensure the monitoring and analysis of incidents to protect People, Technology and Process addressing all security incidents and ensuring escalation are peri internal policies. Identify potential threats delivering strategic reports and strategies to minimise the impact of the threat. - Responsible for the 1st Line SOC strategy within IT. - Creating, leading, and managing the 1st Line Security Operations team which compromise of security operational staff members. - Primarily responsible for directing security event monitoring, management, and response. - Ensuring incident identification, assessment, quantification, reporting, communication, mitigation and monitoring. - Ensuring compliance to policy, process, and procedures. Ability and aptitude to improvise and improve on existing processes to achieve operational objectives as governed by cyber risk management. - Revising and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in managing SLAs. - Responsible for overall use of resources and initiation of corrective action where required for Security Operations Center. - Ensuring daily management, administration & maintenance of security devices to achieve operational effectiveness. - Creation of reports, dashboards, metrics for SOC operations and presentation to Senior Management. - Involvement in arranging staff training in security awareness skills through coaching positive security culture. This will involve driving continuous improvement and addressing non- compliance constructively to achieve good business outcomes. - Compliance with internal policies and relevant legislation / standards, such as the Data Protection Act and ISO standards.
- 12 Plus years relevant experience obtained within a variety of IT Security related roles Experience as a SOC Manager for at least 4 to 6 years - Broad range of experience in managing and delivering security solutions - Demonstrable experience in managing information security operations or incident response activities within a highly complex organisation with global stakeholders - Wide range of security understanding in technology across differing platforms - Experience of Cloud hosting (Azure / AWS) / on-prem technologies and in-depth understanding of associated security management controls - in-depth understanding of security principles and methodologies - in-depth knowledge of security management frameworks e.g. ISO 27001 - Knowledge of relevant IT Security related hardware, software, and vendor solutions - Good knowledge and experience of Vulnerability Management - Current role need to have experience in IAM, DLP, SIEM, SOC, Incident Handling and Security Monitoring - Good understanding of current Cyber security legislation and regulations - Skills in strategic planning, staff leadership and development plus issues relating to training - Have strong people focus and track record of building, managing and developing technical teams - Successful track record of effective project coordination, prioritization, collaboration, organisation and timely project delivery - Proactive approach in identifying opportunities for improvement and define plans / suggestions accordingly for management sign-off - Experience in financial forecasts and budget allocation - Excellent stakeholder engagement and management skills - Organised, efficient and able to work unsupervised under your own initiative - Good leader and team worker - Good written and verbal communication skills