Security Operations Manager | Online/Cyber Secutiry - - South Africa

The Security Operations Manager will be a senior member of the team. They will provide a best-in-class service to the business helping to protect the company's information and systems. The successful candidate will be required to be an expert in security operations and operate as part of a small global team working in conjunction with our managed service providers and 24 x 7 managed SOC. They will need to lead operational security initiatives and help develop standards that need to be applied to the operating environment and will work with the technical teams who are responsible for implementing and maintaining the systems. They will need to work with the Global Head of Information Security and Head of Security Operations to develop and maintain the Information Security Management System based on the ISO 27001:2022 standard. This role is highly technical and hands-on, and a broad understanding of technology is required along with extensive knowledge of security-specific technologies and the security-related aspects of systems, infrastructure, Azure, M365 and business applications. Responsibilities will include: Take responsibility for day-to-day operations within the operational security team ensuring tasks, audit items and operational procedures are executed efficiently and effectively. Manage the day-to-day operations of Information security covering areas such as incident investigation, security tool monitoring and investigation, escalation management from the managed SOC, and threat feed monitoring. Provide security posture oversight to ensure the company's control requirements and technologies are being correctly applied. Provide support and escalation for operational security issues actively participating in major incident response and minimising any impact. Management, configuration and operation of security tooling such as endpoint protection tools, user entity and behavioural analytics, secure email gateways, privilege access management Single Sign-on etc… In conjunction with the technical teams, develop technical security standards ensuring industry best practice is applied whilst considering the risk appetite and needs of the company. Providing technical security advice for projects and changes, including design of technical controls, review of business process controls and input to secure software development lifecycle standards. Review and sign off technical security designs, and provide technical policy authoring. Carry out security assessments on suppliers as part of our Third Party Risk Management programme. Operation of incident management runbooks, including regular testing. Support of ongoing awareness programmes including supporting staff education, running regular phishing tests, and producing intranet announcements to advise of new and emerging threats. Ownership of the vulnerability management process ensuring technical vulnerabilities are reviewed and working with our technical teams, remediated in accordance with our standards. Work with technical and development teams to ensure the implementation of our cloud services and technologies are secure. Research emerging threats and vulnerabilities to aid in the identification of incidents and support the creation of new architecture, policies, standards and technologies to address them. Support investigations into compliance, policy or data breaches as required. Support the production of regular reporting demonstrating the effectiveness of the security operations function. Monitor relevant information sources and information-sharing services to stay up to date on current attacks and trends. Requirements: Knowledge and expertise in cross-border regulations and global data protection laws, such as GDPR and regulatory demands associated with working in financial business. An understanding of secure software development lifecycles and applying these in a DevSecOps environment. Experience in working with security incident response plans and ensuring those are fit for purpose. Experience working with technical people responsible for implementing security technology Experience with security monitoring, detection, prevention and control systems Ability to stay current with tactics techniques and procedures adopted by the various threat actors and the mechanisms to mitigate these. Ability to dig into details as well as analyse data from a high-level view CISSP/CISA/CISM or Microsoft Security certifications Knowledge of Azure, M365, OWASP Top 10, SANS Top 20, MITRE Attack framework etc. Apply Now

Share this job with someone you think should apply!

Facebook

Security Operations Manager | Online/Cyber Secutiry - South Africa

Related Jobs

Cyber Security Analyst Parow East - South Africa

Cyber Security Specialist Gauteng - Gauteng

Cybersecurity Analyst - South Africa

Junior Cyber Security Analyst Umhlanga - Umhlanga Rocks

Cyber Security Specialist - Vulnerability Management - Midrand

Want to do another search?