Security Operations Manager

Oliver James has partnered with a industry leader who are currently looking for a Security Operations Manager to join the team.

You would be responsible to provide leadership and expertise to guide security operations in monitoring and responding to security events. Researching and implementing proactive measures to protect against cyber-attacks and managing security incidents if they occur.

Experience Required:

• Proven track record leading SOC teams and handling security incidents.

• Hands-on experience with deploying and using SIEM tools.

• Skilled in Azure Security solutions, including Defender for Endpoint, Defender for Identity, and Office 365.

• Proficient in writing Kusto queries for Microsoft Sentinel to enhance analytics and threat hunting.

• Deep knowledge of Windows security controls, architecture, and implementation in enterprise environments.

• Strong analytical skills to assess and respond to evolving cyber threats and vulnerabilities.

• Effective leader with the ability to manage, mentor, and inspire teams.

• Clear communicator, comfortable working with technical teams and business stakeholders.

• Well-versed in current and emerging threats, along with appropriate security measures.

• Familiar with scripting using Python and PowerShell.

• Experienced in using digital forensics and incident response tools.

• Solid understanding of security standards and regulations like ISO 27001, NIST, and GDPR.

Key Responsibilities include:

• Develop and lead a comprehensive cyber resilience strategy aligned with regulatory requirements and industry best practices, including setting objectives, priorities, and performance metrics.
• Oversee end-to-end security incident management, including detection, analysis, containment, and resolution.
• Define and implement clear incident response procedures, escalation protocols, and coordination processes across DDaT and broader business teams.
• Lead the vulnerability management program to identify, assess, and remediate security risks across systems, applications, and infrastructure using industry-standard tools and practices.
• Define and track key performance indicators (KPIs) to measure the effectiveness of security operations and incident response efforts; regularly report findings to senior leadership.
• Mentoring and guiding SOC analysts