Security Operations Manager

Join our dynamic team as a Security Operations Manager, where you'll lead and enhance our security strategies to protect critical assets and ensure operational resilience.

Creditsafe operates with the singular vision of powering business decisions by delivering valuable intelligence on customers, suppliers and potential buyers to corporates, public sector organisations and SMEs globally. Our journey began in 1997 in Oslo, Norway, with a revolutionary dream to make business information accessible to all. Twenty-five years later, we’ve realised this dream, changed the market for the better, made data intelligence accessible to all businesses big and small, and opened up new avenues of data intelligence for businesses with machine learning, AI and connected data.

The team is motivated by protecting company reputation, safeguarding existing revenue, and supporting the generation of future revenue. We realise that security can often be misunderstood, so our approach is enabling new and existing customers to interact with our products and services, balancing a positive security culture with a robust control environment. Our responsibilities include setting security policies, educating users on good security practices, managing security risks, and auditing our security posture.

As a Security Operations Manager, you will lead our Security Operations Centre, Application Security, and Security Engineering teams. The successful candidate will play a crucial role in continuing to improve organisational maturity in line with our existing ISO27001 and ISO22301 certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies.

Key Duties and Responsibilities:

• Manage the day-to-day activities of the Security Operations Centre (SOC) and Security Engineering teams.
• Produce reports on key security metrics across Security Operations, Application Security and Vulnerability Management.
• Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans of team members.
• Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO27001 standards.
• Participate in Steering groups for Identity and Access Management and Data Protection.
• Set and align team objectives and tasks to help achieve the overall Information Security and Compliance function’s strategy and goals.
• Participate in Quarterly Business Reviews with our security tooling vendors, providing feedback on product features, feature requests, SLA and reporting requirements.
• Coordinate with different teams to ensure the organisation’s information security posture is maintained and improved.
• Conduct regular Technical Readiness Reviews and risk assessments to identify potential vulnerabilities, risks and implement corrective actions.
• Participate in the Request For Information process by providing technical responses to questions raised by existing and prospective customers.
• Provide leadership and technical guidance to the security team members.
• Manage and oversee security incident investigations alongside the Security Incident specialist.
• Monitor and analyse security alerts and distribute them to the appropriate teams for resolution.
• Report on key performance indicators and trends relevant to the company’s information security.

The responsibilities detailed above are not exhaustive and you may be requested to take on additional responsibilities deemed reasonable by your direct line manager.

Skills and Qualifications:

Essential Qualifications and Experience:

• Professional security management certification, such as CISSP, CISM, CISA or other similar credentials.
• Proven experience in managing security operations teams in a similar industry.
• Familiarity with SOC2, PCI-DSS, ISO22301 and ISO27001 standards.

Desirable Qualifications:

• Bachelor’s or master’s degree in CyberSecurity, Computer Science, Information Technology, or a related field.
• Cloud security qualifications such as ISC2 CCSP, CSA CCSK and AWS Security Speciality.
• ISO27001 Lead Implementor.
• Strong knowledge of cloud and on-premises technology environments, including information security, physical security solutions.
• Financial Industry regulations (UK and Europe).
• Excellent leadership and team management skills.
• Strong problem-solving skills with the ability to make sound decisions in emergency situations.
• Excellent communication skills with the ability to explain complex security issues to non-technical staff.

Benefits:

• Competitive Salary.
• Company Laptop supplied.
• Bonus Scheme.
• 25 Days Annual Leave (plus bank holidays).
• Hybrid working model.
• Healthcare & Company Pension.
• Cycle to work and Wellbeing Programme.
• Global Company gatherings and events.
• E-learning and excellent career progression opportunities.
• Plus more that can be found on the benefits section on the Careers page.

Creditsafe is an equal opportunities employer that values diversity. Please contact Creditsafe if there is any support you need with your application.