Security Operations Manager

Location: North Yorkshire
Job Type: Full-time

This role will be part of a brand-new team dedicated to ensuring that our systems and data are protected from cyber threats and data breaches. You will be responsible for the ongoing management and continual improvement of our Managed Service Provider (MSP) SOC.

What you'll be doing:

• Work with the MSP to implement and integrate security monitoring capabilities and toolsets across critical systems and environments, including new technology services.

• Maintain runbooks, escalation procedures, and consume available threat intelligence in collaboration with the MSP.

• Utilise detective controls to develop rules and alerts to drive security monitoring.

• Identify false positives from alerting and perform incident response, triage, incident analysis, and remediation tasks.

• Serve as the point of contact for the MSP, ensuring effective communication and reporting of all activities to relevant stakeholders.

• Liaise with internal IT teams and third parties to ensure comprehensive security coverage.

• Review MSP security capabilities to ensure appropriate monitoring and security controls across applications, infrastructure, and environments.

• Continuously identify potential threats or control weaknesses, proactively recommending mitigations.

• Collaborate across technical and business teams to identify and mitigate threats, and respond to security incidents.

• Manage Incident Response processes, conduct tabletop exercises, and oversee continual improvement plans.

• At least 3+ years of experience in a security operations environment, leading a SOC or working closely with an MSP SOC.

• Experience embedding and supporting critical operational cybersecurity processes and toolsets, including:

  • Security Incident and Event Management

  • Vulnerability and Threat Management

  • Incident Management and Response

  • Data Loss Prevention

• Ability to prioritize in a fast-moving, high-pressure, constantly changing environment with a strong sense of urgency.

• Ability to plan, prioritise, and produce effective reporting.

• Information Technology background, including knowledge of networking, application security, and general IT delivery best practices (eg, ITIL).

• Demonstrable working knowledge of security domains, auditing standards, and frameworks including ISO 27001, Cyber Essentials, etc.

• Experience working with cybersecurity partners and vendors to maximise return on investment.

• Expertise in industry best practices and prevailing technologies, including Azure, O365, Windows OS Security.

• An industry-recognised professional security certification (CISSP, CEH, GCIA, CISM, etc.).

If you're interested in joining an exciting new team, please apply now!