Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead IT operations and security, ensuring stability and efficiency in a global insurance environment.
- Company: Join a leading financial organisation based in the heart of London.
- Benefits: Enjoy a hybrid work model, competitive salary, and comprehensive benefits package.
- Why this job: Be part of transformative projects that enhance cybersecurity and operational excellence.
- Qualifications: Must have a Bachelor's degree in IT and over 10 years of relevant experience.
- Other info: This role offers a chance to work with cutting-edge technologies in a dynamic team.
The predicted salary is between 85000 - 95000 £ per year.
Social network you want to login/join with:
IT Operations Platforms and Security Lead
In summary the Client is looking to recruit an all-round individual with expert knowledge and hands-on experience of IT Infrastructure coupled with Security, Compliance & Risk Management
You must have upwards of 10 years hands-on expertise in IT Infrastructure combined with Security and Risk – ideally from within the banking or insurance sector.
The IT Operational Platform and Security Lead is responsible for overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment.
While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support global business operations and the associated applications estate.
The role requires a proactive leader who can drive IT operational excellence, manage security risks, focus on continual service improvement, drive transformational delivery projects, and work effectively with internal stakeholders and third-party vendors to deliver a high-quality Global IT services. Working in line with the Architecture defined IT principle of a \”buy before build\” environment, the individual will need to ensure that outsourced and cloud-based services are robust, cost-effective, and aligned with business needs and the Strategic IT vision. They will also play a key role in enhancing cybersecurity, protecting data and systems, driving transformative operational change, enhancing IT processes and ensuring compliance with governance bodies and industry regulations.
Due to the nature of the role, complexity of the estate, current transformation activities and team size, the role requires the functional capability and proficiency to technically augment the team capabilities (when required) and have a detailed knowledge of technical IT support roles/services as a requirement, across multiple technical areas.
Security, Compliance & Risk Management
- Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data.
- Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms.
- Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM).
- Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms.
- Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA).
- Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services.
- Oversee endpoint security, cloud network and API security for robust protection across all assets
- Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests.
Technical Experience
- Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge,
- Microsoft AD (Entra), Server and SQL experience,
- O365 administration and design
- Global Software Patching and estate management via Intune
- Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience
- Software Defined Networking (Cisco, Meraki, Versa)
Key Skills
- Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel.
- Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices.
- Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM).
- Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools.
- Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls.
- IT Service Management & Automation: Experience implementing ITIL-based service management, automating operational tasks, and optimising service delivery.
Operational & Leadership Skills: - IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery.
- Supplier & Vendor Management: Experience managing third-party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost-effectiveness.
- Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption.
- Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls.
Skills & Mindset:
- Problem-Solving & Decision-Making: Capable of making informed decisions and resolving complex IT issues in a fast-paced environment.
- Stakeholder Engagement: Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership and business users.
- Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security-first approach.
The Client is a financial organisation based in the City of London.
This is a hybrid position with 3 days in the office.
Must have a Bachelor’s degree in IT or similar.
The salary for this role will be in the range £85K – £95K plus Benefits.
Do send your CV to us in Word format along with your salary and notice period.
#J-18808-Ljbffr
IT Operations and Security Lead employer: Nexus
Contact Detail:
Nexus Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Operations and Security Lead
✨Tip Number 1
Make sure to highlight your hands-on experience with Microsoft technologies, especially Azure and Microsoft 365. Familiarity with these platforms is crucial for the role, so be prepared to discuss specific projects or challenges you've tackled using these tools.
✨Tip Number 2
Demonstrate your understanding of security frameworks and compliance requirements relevant to the financial sector. Be ready to share examples of how you've implemented security measures or managed risks in previous roles, particularly in a cloud environment.
✨Tip Number 3
Showcase your leadership skills by discussing any experience you have in managing teams or projects. The role requires someone who can drive operational excellence, so examples of successful project management or team leadership will set you apart.
✨Tip Number 4
Prepare to engage with stakeholders effectively. This role involves working with both technical and non-technical teams, so practice articulating complex IT concepts in a way that is accessible to all audiences.
We think you need these skills to ace IT Operations and Security Lead
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your relevant experience in IT infrastructure, security, and risk management. Focus on your hands-on expertise, especially if you have worked in the banking or insurance sector.
Craft a Strong Cover Letter: Write a cover letter that showcases your leadership skills and ability to drive IT operational excellence. Mention specific examples of how you've managed security risks and improved IT processes in previous roles.
Highlight Technical Skills: Clearly list your technical skills related to Microsoft Azure, identity and access management, and threat management. Use keywords from the job description to ensure your application stands out.
Showcase Problem-Solving Abilities: In your application, provide examples of how you've tackled complex IT issues and engaged with stakeholders. This will demonstrate your problem-solving mindset and adaptability in a fast-paced environment.
How to prepare for a job interview at Nexus
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with Microsoft Azure, security frameworks, and IT infrastructure. Highlight specific projects where you've implemented solutions or improved security measures, especially in a banking or insurance context.
✨Demonstrate Leadership Skills
As the role requires a proactive leader, share examples of how you've led teams or projects. Discuss your approach to managing third-party vendors and ensuring service delivery aligns with business needs.
✨Understand Compliance and Risk Management
Familiarise yourself with relevant compliance frameworks like ISO 27001 and GDPR. Be ready to explain how you've conducted risk assessments and managed security policies in previous roles.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving abilities in real-world situations. Think of scenarios where you've had to respond to cyber threats or manage IT service continuity, and be ready to articulate your thought process and actions.
