Security Operations Manager

Job Title: Security Operations Manager
Location: Cardiff Bay, Wales
Salary: up to £60,000.00 per annum
Department: Information Security & Compliance/ Solutions and Security Engineering
Reports To: Head of Information Security and Compliance

Creditsafe is expanding its Information Security and Compliance function, and is looking to recruit an experienced Security Operations Manager. With increasing early involvement in projects, new product development and enabling high end sales, our growing Security Operations Centre and Cybersecurity Engineering teams are broadening their involvement across the whole business.

The Security Operations Manager has responsibility for responding to, and co-ordinating Information Security Incidents across the Creditsafe Group of companies. This role also includes planning and monitoring the Information Security and Compliance team’s Security Operations Centre and Cybersecurity Engineering workloads. Central to this will be promoting collaboration between SOC and Cybersecurity Engineering and various functions within Creditsafe that have responsibility for production, internal and solutions engineering.

The Security Operations Manager would also be working closely with the Information Security and Compliance Manager, who has overall responsibility for Risk Management and maintaining our ISO27001 certification.

• Manage teams of SOC analysts and Cybersecurity Engineers
• Prioritising workstreams
• Gathering relevant metrics from various components of the InfoSec tooling stack
• Reviewing and identifying gaps in process and procedure documentation relating to corporate standards (including ISO27001 policies)
• Manage current InfoSec tooling stack, vendor interactions and license renewals
• Own and manage security incidents, including driving lessons learned and feedback sessions, and documenting to completion
• Identify skills gaps and address with relevant training, in accordance with corporate technology direction
• Conducting 1-2-1s and devising Personal Development Plans relevant to the team members skills and experience levels, and their career aspirations

Essential Experience/Skills
• 5 years experience in any of the following: Security Operations Centre Management; Threat Hunting; Penetration Testing; IT Operations or Incident Management
• 2 years experience of Information Security Incident Management
• 3 years management experience of teams with more than 4 staff
• 2 years organising and remediating Penetration Testing results
• Able to identify, produce and present metrics relevant to different audiences

Desirable Certifications
• CompTIA Security+ or CySA+
• CREST Certified Incident Manager or GIAC Incident Handler Certification
• AWS Cloud Practitioner and/or Microsoft Azure Fundamentals

Desirable Technologies
• Darktrace
• Rapid7 InsightVM & InsightAppSec
• Mimecast Email and Web Security
• Bitdefender Endpoint Security
• Microsoft 365 E5 Security and Compliance tooling (e.g. eDiscovery, DLP, MCAS, Advanced Audit)
• Log management
• ServiceNow
• Varonis DATAdvantage & DataPrivilege
• OneTrust GRC