Security Operations Manager
BDO
- London
- Permanent
- Full-time
- Deliver security operations technology roadmaps in conjunction with the wider Cybersecurity strategy. Propose changes to existing policies, procedures and configurations to ensure operating efficiency and regulatory compliance.
- Contribute to the security strategy, ensuring that technical and structural considerations regarding design, build and run components are considered.
- Aid the Head of IT Security in chairing various defined security management working groups, ensuring that reporting against progress vs plan is developed.
- Manage security operational production incidents and participate in problem and change management forums.
- Serve as an active participant in the information security governance process, working with Business Analysts, Governance and PMO functions in order to ensure that cyber risks are accurately reported, assessed and mitigated.
- Consult with IT and support staff to ensure that security is factored into the evaluation, selection, installation and configuration of new products and services.
- Report on the implementation of technical controls to support and enforce defined security policies.
- Report on the technical aspects of security management against pre-defined Cybersecurity operational metrics.
- Engage with the MSSP re Service Level Agreements (SLA’s), monitoring metrics, including contract and performance metrics
- Own day-to-day management IT Security Service Requests and tickets, including: Reporting, Knowledge Management, Root Cause Analysis and Proactive Problem Repetition Avoidance. Contribute to a Cybersecurity knowledgebase comprising technical reference libraries, security advisories and alerts, information on security trends and practices, and laws and regulations.
- Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements.
- Contribute to the development of a Cybersecurity Operations Resource and Capacity planner managed through BDO’s Azure DevOps environment.
- Oversee incident response, threat detection, and mitigation efforts
- A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel
- An interest in automation of Security operation function including artificial intelligence
- An understanding of Microsoft security product portfolio
- CISSP/CISM (Desired)
- CCSP/SSCP (Desired)
- Proven experience in Cybersecurity and IT Operations (Required)
- DLP, EDR/XDR, CASB, E-mail Security, SWG and ZTNA/SASE