Security Operations Team Lead

Location London
Discipline: Technology
Job type: Permanent
Salary: ££90000 per annum plus bonus and benefits
Contact name: Andrew Spence

Contact email: andrew.spence@rbwconsulting.com
Contact phone: +44 1293 584 300
Job ref: 29101
Published: 20 days ago
Expiry date: 08 Oct 2023 11:59
We have an exciting opportunity to join a leading organisation in the financial services sector. They are actively looking to recruit an experienced Security Operations Team Lead who will be responsible for a small SOC team and will help with key decisions in relation to Information Security, whilst also  ensuring the security, confidentiality, and availability of their business systems and services.

In this role, you will safeguard assets and systems by conducting monitoring, analysis, and detection activities using security log feeds, direct access to security systems, and ad-hoc reports. Additionally, you will lead investigations and respond to security incidents, performing triage and engaging with multiple levels of the business.

Role Responsibilities:
 
  • Provide security analysis and support across the organization, ensuring compliance with security and governance requirements, and taking proactive steps to identify and address security incidents.
  • Log and report incidents to the business and third parties as necessary.
  • Leverage the organization's capabilities, including attack detection, vulnerability management, and process enhancement.
  • Define and report on key performance indicators (KPIs) for vulnerabilities across the IT infrastructure.
  • Develop and apply technical expertise to assess the scope of an attack, its impact on the business, and advise on containment strategies. Offer guidance on system hardening and mitigation measures to prevent recurrence.
  • Collaborate closely with other security team members and business units to identify and mitigate threats, and support operational teams on security matters, ensuring risk mitigation.
  • Play a key role in Disaster Recovery testing and management.
  • Contribute significantly to Audit and Compliance activities.
  • Participate in the design and execution of test scenarios to enhance procedural knowledge and ensure completeness of work instructions.
  • Establish and maintain the company's security policies and standards.

Candidate Requirements:
 
  • The ideal candidate should possess extensive expertise in security incident response, including evaluating security events, offering technical guidance, and taking the lead during incidents.
  • Prior experience within a Security Operations Centre (SOC) is expected, preferably in a role involving line management, decision-making, and shaping the organisation's security strategy.
  • Exceptional communication skills are a must, with the ability to collaborate effectively with diverse stakeholders from various technology and business units.
  • In-depth knowledge of advanced security analysis is essential, encompassing aspects like the cyber kill chain, malware analysis, memory and file system assessment, and familiarity with various attack vectors.
  • Proficiency in technical security systems, security architecture, security technology, as well as expertise in penetration testing and Security Event Management methodologies, is crucial.
  • Demonstrated innovation and creative problem-solving abilities are highly valued.
  • Leadership qualities, objectivity, accountability, and a strong focus on delivering results are indispensable traits.
  • Prior experience in the financial services sector is highly preferred, along with a background in Zero Trust Security principles.
  • Any previous involvement in implementing security capabilities through technology and process enhancements would be an asset.
  • Holding professional security certifications such as CISSP, CISM, or TOGAF is strongly encouraged.