Security Operations Manager | Online/Cyber Security
Pure Placements
- Cape Town, Western Cape
- Permanent
- Full-time
- Take responsibility for day-to-day operations within the operational security team ensuring tasks, audit items and operational procedures are executed efficiently and effectively.
- Manage the day-to-day operations of Information security covering areas such as incident investigation, security tool monitoring and investigation, escalation management from the managed SOC, and threat feed monitoring.
- Provide security posture oversight to ensure the company's control requirements and technologies are being correctly applied.
- Provide support and escalation for operational security issues actively participating in major incident response and minimising any impact.
- Management, configuration and operation of security tooling such as endpoint protection tools, user entity and behavioural analytics, secure email gateways, privilege access management Single Sign-on etc…
- In conjunction with the technical teams, develop technical security standards ensuring industry best practice is applied whilst considering the risk appetite and needs of the company.
- Providing technical security advice for projects and changes, including design of technical controls, review of business process controls and input to secure software development lifecycle standards.
- Review and sign off technical security designs, and provide technical policy authoring.
- Carry out security assessments on suppliers as part of our Third Party Risk Management programme.
- Operation of incident management runbooks, including regular testing.
- Support of ongoing awareness programmes including supporting staff education, running regular phishing tests, and producing intranet announcements to advise of new and emerging threats.
- Ownership of the vulnerability management process ensuring technical vulnerabilities are reviewed and working with our technical teams, remediated in accordance with our standards.
- Work with technical and development teams to ensure the implementation of our cloud services and technologies are secure.
- Research emerging threats and vulnerabilities to aid in the identification of incidents and support the creation of new architecture, policies, standards and technologies to address them.
- Support investigations into compliance, policy or data breaches as required.
- Support the production of regular reporting demonstrating the effectiveness of the security operations function.
- Monitor relevant information sources and information-sharing services to stay up to date on current attacks and trends.
- Knowledge and expertise in cross-border regulations and global data protection laws, such as GDPR and regulatory demands associated with working in financial business.
- An understanding of secure software development lifecycles and applying these in a DevSecOps environment.
- Experience in working with security incident response plans and ensuring those are fit for purpose.
- Experience working with technical people responsible for implementing security technology
- Experience with security monitoring, detection, prevention and control systems
- Ability to stay current with tactics techniques and procedures adopted by the various threat actors and the mechanisms to mitigate these.
- Ability to dig into details as well as analyse data from a high-level view
- CISSP/CISA/CISM or Microsoft Security certifications
- Knowledge of Azure, M365, OWASP Top 10, SANS Top 20, MITRE Attack framework etc.
ExecutivePlacements.com