1345 jobs - 60 added today
211661 registered Jobseekers
Recruiting? Call us on 01772 639042
Email me newest jobs similar to this one
12 days ago
only 16 days until close

Security Operations Lead- COE (Service Ops & Assurance)


Three
Location: Maidenhead
Job type: Permanent
Category: Marketing Manager
Apply
Select how you want to share:
View similar
Job description

Job Context

Purpose and Accountability

This role leads a team of Security professionals that owns the day-to-day safeguarding of customer information and physical assets of the company

Management accountability of Physical Security and Computer Emergency Response personnel

Accountable for implementing operational controls that will govern the physical security of company assets and any threat to or unauthorised access to company assets including customer and employee information

Accountable for leading the proactive use of security tooling and partner services in protecting customer, business and employee information

The typical planning horizon for this role is monthly due to the operational nature of the role

Roles & Responsibilities

Responsibilities

* Provides advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
* Support cross functional teams such as, Fraud, Incident Management and Business Continuity to ensure impacts are managed to resolution in timely and effective manner
* Responsible for ensuring appropriate level of awareness and training is provided cross business to support security controls and procedures required to minimise security breaches impacting the business
* Obtains and acts on vulnerability information and conducts security risk assessments, business impact analysis and accreditation across the physical estate and information systems
* Provides advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
* Responsible for the definition and development of security tools that operate and are monitored within the Security Operations Centre (SOC) in order to identify and detect security threats, coordinating an effective response and recovery.

Skills, Experience & Qualifications

Role Fundamentals – Essential criteria

* Demonstrable experience of improving maturity level of security controls in line with industry best practice and standards, e.g. COBIT, NIST, ISO27001, PCI-DSS, CAS-T, ND1643
* Demonstrable experience of ensuring physical security compliance against industry standards frameworks, e.g. NIST SP800-53, ISO27001, Cyber Essentials
* There is also a requirement to be security cleared or be able to security cleared as part of the role.

Level / Grade specific experience and knowledge

Candidates at this level should demonstrate:

* Experience of working with and influencing various levels of management, building relationships and influence across teams and a wider community of other leaders and managers. A clear communicator
* Ability to lead, make decisions, problem solve and work within teams. Can demonstrate flexibility and agility to move between role types within teams
* Will have clear subject matter experience of their area (both technical and commercial) and ability to connect and work across multiple domains. Can demonstrate knowledge of their area articulated through key operating elements of people, process and technology
* Ability to contribute to the development of strategies (and/or service strategies) within their area and understand the importance of the customer experience and how this can be affected by service impacts
* Will have a high-level, broad end-to-end understanding of our business and it’s operational performance and be able to demonstrate knowledge of working in a service-orientated environment
* Will be passionate about the use of data and insight to make informed decisions, solve problems and input to operational and strategic plans. Can demonstrate the ability to gather, analyse and present information in business terms for management and leadership consumption
* Ability to work in a fast paced changing environment that shows flexibility, resiliency, self-awareness and ability to support other team members
* Will have experience of working directly with partners to successfully deliver outcomes and will demonstrate an awareness of partner contracts.

Domain specific knowledge & experience – Desirable criteria

For this role, candidates should also demonstrate:

* Industry or academic credentials in security or risk management, e.g. CISM, CISSP or relevant graduate degree. Sound understanding of security control standards such as ISO27001
* Experience working within a cloud-based technology environment.
* Experience working in telecommunications and/or within a large mobile provider beneficial.
Job description

Job Context

Purpose and Accountability

This role leads a team of Security professionals that owns the day-to-day safeguarding of customer information and physical assets of the company

Management accountability of Physical Security and Computer Emergency Response personnel

Accountable for implementing operational controls that will govern the physical security of company assets and any threat to or unauthorised access to company assets including customer and employee information

Accountable for leading the proactive use of security tooling and partner services in protecting customer, business and employee information

The typical planning horizon for this role is monthly due to the operational nature of the role

Roles & Responsibilities

Responsibilities

* Provides advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
* Support cross functional teams such as, Fraud, Incident Management and Business Continuity to ensure impacts are managed to resolution in timely and effective manner
* Responsible for ensuring appropriate level of awareness and training is provided cross business to support security controls and procedures required to minimise security breaches impacting the business
* Obtains and acts on vulnerability information and conducts security risk assessments, business impact analysis and accreditation across the physical estate and information systems
* Provides advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
* Responsible for the definition and development of security tools that operate and are monitored within the Security Operations Centre (SOC) in order to identify and detect security threats, coordinating an effective response and recovery.

Skills, Experience & Qualifications

Role Fundamentals – Essential criteria

* Demonstrable experience of improving maturity level of security controls in line with industry best practice and standards, e.g. COBIT, NIST, ISO27001, PCI-DSS, CAS-T, ND1643
* Demonstrable experience of ensuring physical security compliance against industry standards frameworks, e.g. NIST SP800-53, ISO27001, Cyber Essentials
* There is also a requirement to be security cleared or be able to security cleared as part of the role.

Level / Grade specific experience and knowledge

Candidates at this level should demonstrate:

* Experience of working with and influencing various levels of management, building relationships and influence across teams and a wider community of other leaders and managers. A clear communicator
* Ability to lead, make decisions, problem solve and work within teams. Can demonstrate flexibility and agility to move between role types within teams
* Will have clear subject matter experience of their area (both technical and commercial) and ability to connect and work across multiple domains. Can demonstrate knowledge of their area articulated through key operating elements of people, process and technology
* Ability to contribute to the development of strategies (and/or service strategies) within their area and understand the importance of the customer experience and how this can be affected by service impacts
* Will have a high-level, broad end-to-end understanding of our business and it’s operational performance and be able to demonstrate knowledge of working in a service-orientated environment
* Will be passionate about the use of data and insight to make informed decisions, solve problems and input to operational and strategic plans. Can demonstrate the ability to gather, analyse and present information in business terms for management and leadership consumption
* Ability to work in a fast paced changing environment that shows flexibility, resiliency, self-awareness and ability to support other team members
* Will have experience of working directly with partners to successfully deliver outcomes and will demonstrate an awareness of partner contracts.

Domain specific knowledge & experience – Desirable criteria

For this role, candidates should also demonstrate:

* Industry or academic credentials in security or risk management, e.g. CISM, CISSP or relevant graduate degree. Sound understanding of security control standards such as ISO27001
* Experience working within a cloud-based technology environment.
* Experience working in telecommunications and/or within a large mobile provider beneficial.
Apply

Email me newest jobs similar to this one

  Back to the top