Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the Security Operations Centre, manage threats, and oversee incident responses.
- Company: BACB is a UK bank specialising in trade finance, focusing on Africa and the Middle East.
- Benefits: Enjoy hybrid working with 3 days onsite and 2 from home, plus competitive pay.
- Why this job: Join a dynamic team making a real impact in cybersecurity and trade finance.
- Qualifications: Bachelor's degree in IT or related field; 3+ years in cybersecurity; relevant certifications preferred.
- Other info: Opportunity to work with cutting-edge security tools and technologies.
The predicted salary is between 60000 - 84000 £ per year.
About Us
BACB is a UK bank that offers trade finance and complementary products to clients in specialist markets, especially Africa and the Middle East. We have been helping businesses with trade finance and complementary products for over half a century, focusing on trade flows to and from Africa and the Middle East as well as real estate in the UK. Our in-depth knowledge of the countries and practices where our clients operate ensures that we put them first.
Additional Info
- Hybrid Working: 3 days onsite, 2 from home
- Location: City of London
- Contract Type: 6 month contract
Job Summary
As a Cyber Security Lead within our SOC, focusing on threat intelligence and Identity and Access management, the incumbent will play a pivotal role in managing the Security Operations Centre (SOC), ensuring effective threat detection, incident response, and continuous improvement of security measures.
Key Work Outputs and Accountabilities
- SOC Management: Lead deployment and daily operations of the SOC, including security events monitoring, detection, and response. Ensure adequate coverage and effective response to emerging threats and security events.
- Threat Intelligence: Collect and analyse information from various sources to identify potential and existing cyber threats targeting the organization. Assess the credibility, severity, and potential impact of identified threats, providing actionable intelligence to inform security measures. Manage threat intelligence gathering and analysis to proactively identify risks and vulnerabilities.
- Incident Response: Oversee incident response processes, ensuring timely and effective resolution of security incidents. Lead the creation of incident playbooks, ensuring these are regularly updated with any people, process or technology changes. Create formal incident reports and conduct post-incident reviews. Track the lessons learned implementation to improve response strategies. Provide threat intelligence and vulnerability management support during security incidents, helping to identify threat actors, tactics, techniques, and procedures (TTPs).
- Identity and Access Management (IAM): Ensure all access is managed according to the organisation's Identity and Access Management policy. Conduct periodic access reviews as well as thorough technical assessments across the organization's identity referential using tools such as Purple Knight, Ping Castle or equivalent. Analyse IAM issues, determine their potential impact, and recommend strategies for risk prevention.
- Security Tools Management: Supervise the deployment, configuration, and operation of security tools (e.g., SIEM, IDS/IPS). Oversee the email, local network and web traffic security using Mimecast, Clearpass and Zscaler toolsets. Ensure tools are optimized to detect threats while minimizing false positives.
- Collaboration: Work closely with cross-functional teams, including incident responders and system administrators, to contain and remediate security incidents as well as vulnerabilities.
- Documentation: Ensure that organisations IAM and Incident Management process documents are kept up to date and adequately aligned with the overarching cyber policy and risk requirements. Maintain detailed records of incidents and IAM reviews, including analysis, response actions, and lessons learned, to continually improve SOC and IAM processes.
Required Qualifications and Experience
- Educational Background: Bachelor's degree in computer science, Information Technology, or a related field.
- Experience: 3+ years of experience in vulnerability management, information security, or a related role.
- Technical Proficiency: Advanced knowledge of cybersecurity tools and technologies, such as: Identity and Access Management tools and platforms (e.g. Microsoft AD, Entra, PAM360, Purple Knight, Ping Castle), SIEM (e.g., Splunk, QRadar, Arctic Wolf and Dark Trace), Threat intelligence platforms (e.g., Recorded Future, Mandiant), Strong understanding of cyber threat intelligence, attack vectors, and mitigation techniques, Firewalls, IDS/IPS, and DLP solutions, Email, Network Access Control and Web traffic security tools (Mimecast, Clearpass, Zscaler etc), Proficiency in incident response frameworks, such as SANS or NIST.
- Certifications: Relevant certifications such as CISSP, CEH, or CompTIA Security+ are preferred.
- Analytical Skills: Ability to analyse complex data sets to identify and mitigate security threats.
- Communication Skills: Strong verbal and written communication skills to effectively collaborate with cross-functional teams and convey security concepts to non-technical team members.
Cyber Security Operations Lead IAM employer: BACB
Contact Detail:
BACB Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Operations Lead IAM
✨Tip Number 1
Familiarise yourself with the specific tools mentioned in the job description, such as Purple Knight and Ping Castle. Having hands-on experience or knowledge of these tools will give you an edge during discussions and demonstrate your readiness for the role.
✨Tip Number 2
Stay updated on the latest trends and threats in cyber security, particularly those affecting the banking sector. Being able to discuss recent incidents or emerging threats can showcase your proactive approach and understanding of the industry.
✨Tip Number 3
Network with professionals in the cyber security field, especially those who work in SOCs or have experience with IAM. Engaging in conversations can provide insights into the role and may even lead to referrals or recommendations.
✨Tip Number 4
Prepare to discuss your incident response experiences in detail. Be ready to share specific examples of how you've handled security incidents, including the steps you took and the outcomes, as this will be crucial for the role.
We think you need these skills to ace Cyber Security Operations Lead IAM
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cyber security, particularly in areas like threat intelligence and Identity and Access Management. Use keywords from the job description to demonstrate your fit for the role.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for cyber security and your understanding of the specific challenges faced by BACB. Mention your experience with security tools and incident response processes, and how you can contribute to their SOC.
Showcase Relevant Certifications: If you have certifications like CISSP, CEH, or CompTIA Security+, make sure to prominently display them in your application. These credentials can set you apart from other candidates and demonstrate your commitment to the field.
Highlight Analytical Skills: In your application, provide examples of how you've used analytical skills to identify and mitigate security threats in previous roles. This will show BACB that you have the necessary expertise to handle complex data sets and improve their security measures.
How to prepare for a job interview at BACB
✨Know Your Cyber Security Tools
Familiarise yourself with the specific tools mentioned in the job description, such as SIEM, IAM platforms, and threat intelligence tools. Be prepared to discuss your experience with these technologies and how you've used them to enhance security operations.
✨Demonstrate Incident Response Knowledge
Prepare to explain your approach to incident response, including any frameworks you’ve worked with like SANS or NIST. Share examples of past incidents you've managed, focusing on your role in resolving them and the lessons learned.
✨Showcase Your Analytical Skills
Be ready to discuss how you analyse complex data sets to identify threats. You might be asked to solve a hypothetical scenario during the interview, so practice articulating your thought process clearly and logically.
✨Communicate Effectively
Strong communication skills are crucial for this role. Practice explaining technical concepts in simple terms, as you may need to collaborate with non-technical team members. Prepare to demonstrate your ability to convey information clearly and concisely.
