Information Security Operations Manager (SOC)

One of the UK’s leading providers of UK critical infrastructure for trade requires a SecOps Manager. To lead the operations activities of the Information Security team, ensuring the highest quality protections are delivered to the business, whilst administering, prioritising, monitoring and conducting business as usual Computer Security, Information Security and Cyber Security activities in line with the technical and business strategy and with Information Security industry best practice.

Assisting the Information Security Lead, constantly reviewing and improving the business’ Cyber Security posture to meet compliance requirements with any appropriate standards or legislation. Reliably reporting defence and initiative performance and driving best practices. Contributing to the development of the business’ long-term Information Security strategy.

Responsibilities include:

• Develop and support the Information Security team in the DevSecOps field.
• Assist with the development and support of DevSecOp practices.
• Manage the day-to-day relationship with incumbent security partners.
• Participate in internal management and governance forums, promoting cyber security best practice across IT and the business.
• Deputise for the Information Security Lead where required, including within the technical response to security incidents.
• Maintain, review, test and implement security operations technologies, such as antivirus, data encryption, identity, cloud and other security measures in place.
• Maintain and improve procedures, documentation and relationships with other internal operations teams, ensuring effective means of communications and escalation.
• Report overall security status and highlight individual systems as required.
• Provide evidence required for internal and external security audits or to help determine root causes of security incidents.
• Recommend appropriate tools and countermeasures.
• Perform risk assessments and testing of systems identifying prime risks and limitations that may impact computer security.
• Maintain security procedures with outside vendors.
• Assist the other technology teams when reviewing and testing disaster recovery plans.
• Keep computer security knowledge current to understand the latest threats and incidents and to maintain strong defences.
• Ability to work well independently or with a team.
• Capable of meeting deadlines and budgets.

Key skills:

• Current industry recognised security qualification (e.g. applicable Microsoft certifications, CISMP, CEH etc).
• Security operations experience.
• IT technical background.
• Good communication skills for both written and verbal reporting.
• Ability to communicate and guide all levels of staff.
• Able to work independently with a strong bias to getting things done.
• Understand the true value to the business of meeting objectives and timely delivery.
• Willingness to travel around all ports and sites as required for specific projects and generally.
• Possess a firm belief in the values of customer service and core values of openness and honesty, teamwork and respect, along with the ambition to make a difference and exceed expectations.
• 2 years or more experience of working in an infrastructure role with security tools.
• Working knowledge of ISMS, NIS Regulations, GDPR and ITIL.
• In-depth experience of MS cloud technologies. In Tune, Defender suite, Azure, Entra.

This is a wonderful opportunity to work for one of the UK’s top companies in a highly visible role with great growth potential. The salary is a basic up to £65K + bonus + corporate package. The role can be based out of their Hull, Cardiff, London or Southampton offices.