Finance Project Manager £500 per day 12 month contract Role based in Cambridge As one of the most revered leaders in their industry, this technology led organisation is widely regarded as one of Britain's global success stories. This is a fantastic opportunity to join them..... click apply for full job details
Refectory Rd, Falmer, Brighton BN1 9QU, UK
This fast paced Financial Services organisation is recruiting for a motivated Head of Security Operations to join their Group Shared Services function as Head of Security Operations, to lead & expand their internal IT Security Operations while managing the Security Operations provided by a trusted 3rd party provider. With a remit to oversee operations, build processes, develop the technology stack and manage security resources, this is a hands-on role combining in-depth technical work plus responsibility for information security operations activities delivered by internally managed resources and 3rd party managed services. Reporting to the Group IT Security Director, the Head of Security Operations will ensure the operational effectiveness of IT security services, providing reports and other technical updates together with the development of a Security Operations Centre (SOC), managing 24x7 security incident process management of third parties, operations of security tools and management of continuous improvement. Duties Include: - Integration of new technologies and enhancements of tools and processes to protect against new threats - Incident Response - Management of third party security team and internal team of security operational analysts to ensure 24x7x365 incident response. - Oversee and coordinate the initial response to all security incidents and instigate CSIRT where required. - Introduce process improvements and ensure the incident response plans are complete and regularly tested. - Management of recovery process and Root Cause Analysis. - Change Management - Approve Security related changes - Security Tools - Creation of processes and acceptance of new & updated Security tools into BAU for use by the Group. - Operational management and configuration of key security tools. - Provide recommendations, support and technical guidance on the adoption of new security tools. - Security Consultation - Working with the business areas to understand key activities and identify potential key threats. - People Development - Develop and enhance the skills of the IT Security Operations team. - People Leadership - Take the lead in all matters with regard to the management of staff to maximise business performance. Skills Expected - Managing security operations in complex environments - Strong knowledge and understanding of information security frameworks, incident management (including Critical Incident Management), and application security best practices - Management and remediation of identified and day zero vulnerabilities, alerts, threats and breaches - Experience of working with and managing 3rd party Security providers - IT Security, including good understanding of associated technologies and architectures - Strong IT security principles, guidance and technical standards - Fully abreast of trends and changing technologies as they relate to information security threats and controls - In-depth knowledge of network technologies and network security - Security technologies and controls such as Network, Application and 'Next Generation' Firewalls, IDS/IPS, Web Proxy, Vulnerability Scanners, Host Intrusion Prevention, Active Directory, Secure FTP, Certificates and IPsec VPN - CISM, CEH, CISSP or GIAC Cyber Defence certifications are desirable Useful Knowledge/Skills: - QRadar or other SIEM solution, Qualys Vulnerability Manager, ForcePoint Web Security/CASB &/or Boldon James Classifier - Knowledge of UK financial sector regulation - Cloud architecture & Cloud technologies and security aspects of cloud service models - Database security, Application security, Identity and Access Management, Endpoint and servers security (Antivirus/Antimalware, APT) - Encryption at rest and in transit, DLP, Patch and vulnerability management, PCI DSS - Encryption technologies and ciphers, including IPsec VPNs, TLS/SSL and storage encryption - Exposure to ISO27001/ISMS - Systems design and development from business requirements analysis - Development of security standards and policies Interested Candidates looking for an engaging role with a quality Employer should apply now and can expect feedback on their application within 72 hours.