Security Operations Manager
Bristol - 1-2 days a week, remote working the rest of the week
£85,000 - 95,000 + bonus + benefits
This is a fantastic opportunity to join a rapidly expanding professional services company who are strengthening their security posture in a cloud centric environment,
Reporting into the Head of IT Security for the UK, The Security Operations Manager will be leading a team of 2 and will be responsible for ensuring risks are captured and the Information Security posture is appropriately maintained with adherence to policies and standards.
This role has responsibility to deliver the IT Security efforts across the firm by working in collaboration with other key stakeholders in the business, with over 4000 users across 20 locations.
Main Responsibilities
- Develop and maintain IT security policies and procedures, providing technical expertise.
- Offer technical security consultancy for internal IT projects and programs.
- Assist with client RFP and security audit processes by providing in-depth technical knowledge of the firm's IT environment.
- Support external vulnerability assessments and penetration tests, and recommend remediation paths for identified issues.
- Maintain and support IT security tools and processes.
- Perform IT security operations functions, including security log monitoring, incident response and management, firewall management, email and web traffic filtering, and handling service desk tickets and escalations.
- Obtain and maintain relevant accreditations in line with applicable regulations, client requirements, internal policies, and industry best practices.
Essential experience for the position of Security Operations Manager
- Experienced IT security leader with broad technical experience.
- Knowledge and experience of industry standards such as ISO 27001 and Cyber Essentials.
- Experience with Vendor management and relationship management
- Experience working across multiple teams both internally and externally.
- Extensive information security experience, across broad security domains.
- Previous experience as an IT System Administrator supporting a variety of platform - Windows, Azure, Intune, Office 365, Azure Threat Protection, Mimecast, ZScaler etc.
- Extensive vulnerability management experience
- Previous experience working with a Security Event and Incident Management platforms.
- Experience analysing events and logs.
- Good knowledge of enterprise network and host security controls.