Security Operations Manager

Join our dynamic team as a Security Operations Manager, where you will lead and enhance our security strategies to protect critical assets and ensure operational resilience.

WHO ARE WE?

Privately owned and independently minded, Creditsafe operates with the singular vision of powering business decisions. We do this by delivering valuable intelligence on customers, suppliers and potential buyers to corporates, public sector organisations and SMEs globally. Our journey began in 1997 in Oslo, Norway, with a revolutionary dream to make business information accessible to all. Twenty-five years later, we’ve not only realised this dream, changed the market for the better, made data intelligence accessible to all businesses big and small but most importantly, opened up new avenues of data intelligence for businesses with machine learning, AI and connected data.

THE TEAM

Creditsafe’s Information Security and Compliance team are motivated by protecting company reputation, safeguarding existing revenue, and supporting the generation of future revenue. We realise that security can often be misunderstood so our approach is enabling new and existing customers to interact with our products and services, and we pride ourselves on balancing a positive security culture with a robust control environment. Our responsibilities include setting security policies, educating users on good security practices, managing security risks, and auditing our security posture. We interact with various teams, both internally and externally, and we aim to be as helpful and supportive as possible.

JOB PROFILE

As a Security Operations Manager, you will lead our Security Operations Centre, Application Security, and Security Engineering teams. The successful candidate will play a crucial role in continuing to improve organizational maturity in line with our existing ISO27001 and ISO22301 certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies to protect critical assets and ensure operational resilience.

KEY DUTIES AND RESPONSIBILITIES

• Manage the day-to-day activities of the Security Operations Centre (SOC) and Security Engineering teams.
• Produce reports on key security metrics across Security Operations, Application Security and Vulnerability Management.
• Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans of team members.
• Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO27001 standards.
• Participate in Steering groups for Identity and Access Management and Data Protection.
• Setting and aligning team objectives and tasks to help achieve the overall Information Security and Compliance function’s strategy and goals.
• Participate in Quarterly Business Reviews with our security tooling vendors, providing feedback on product features, feature requests, SLA and reporting requirements.
• Coordinate with different teams to ensure the organization’s information security posture is maintained and improved.
• Conduct regular Technical Readiness Reviews and risk assessments to identify potential vulnerabilities, risks and implement corrective actions in planned changes to applications, environments, and configurations.
• Participate in the Request For Information process by providing technical responses to questions raised by existing and prospective customers.
• Provide leadership and technical guidance to the security team members.
• Manage and oversee security incident investigations alongside the Security Incident specialist and events to protect corporate IT assets, including intellectual property, regulated data, and the company’s reputation.
• Monitor and analyse security alerts and distribute them to the appropriate teams for resolution.
• Report on key performance indicators and trends that are relevant to the company’s information security.

The responsibilities detailed above are not exhaustive and you may be requested to take on additional responsibilities deemed as reasonable by your direct line manager.

SKILLS AND QUALIFICATIONS

Essential Qualifications and Experience:

• Professional security management certification, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.
• Proven experience in managing security operations teams in a similar industry.
• Familiarity with SOC2, PCI-DSS, ISO22301 and ISO27001 standards.

Desirable Qualifications:

• Bachelor’s or master’s degree in CyberSecurity, Computer Science, Information Technology, or a related field.
• Cloud security qualifications such as ISC2 CCSP, CSA CCSK and AWS Security Speciality.
• ISO27001 Lead Implementor.
• Strong knowledge of cloud and on-premises technology environments, including information security, physical security solutions.
• Financial Industry regulations (UK and Europe).
• Excellent leadership and team management skills.
• Strong problem-solving skills with the ability to make sound decisions in emergency situations.
• Excellent communication skills with the ability to explain complex security issues to non-technical staff.

BENEFITS

• Competitive Salary.
• Company Laptop supplied.
• Bonus Scheme.
• 25 Days Annual Leave (plus bank holidays).
• Hybrid working model.
• Healthcare & Company Pension.
• Cycle to work and Wellbeing Programme.
• Global Company gatherings and events.
• E-learning and excellent career progression opportunities.
• Plus more that can be found on the benefits section on the Careers page.

Creditsafe is an equal opportunities employer that values diversity. Please contact Creditsafe if there is any support you need with your application.