Ref no.BHN565856LocationLondon, EnglandStart dateASAPJob typePermanentJob statusClosedJob summaryWe are currently working with a one of the countries most well regartded Utilities providers, having won a number of awards. They are looking for a SOC Manager to help them grow their Security Operation department from the ground up.Key skills required for this roleSecurity Operations, SIEM, SOCImportantSOC, Security Operation, SIEM, SOARJob descriptionTitle: Cyber Security Operations ManagerLocation: Either Crawley or London (Hybrid)Salary: Up to 80,000 base plus bonusLine Management: up to 14 peopleWe are currently working with a one of the countries most well regartded Utilities providers, having won a number of awards across best companies to work and customer stasfaction. They are now looking for a SOC Manager to help them grow their Security Operation department and continue their security enhancment programme.The Cyber Security Operations Manager will continue to shape the future of their Cyber Security Operations capabilities, applying threat hunting, metrics, and automation to enhance our ability to withstand and recover at scale from evolving cyber threats.The Cyber Security Operations Manager provides overall daily and strategic management of people, process, and technology capabilities within the Cyber Security Operations Team.A few of your accountabilities:Manage the cyber security operations team and the quality of third party services and deliverables, reviewing performance.Take the lead management responsibility for all cyber security event monitoring and incident response services received from all partner organisations with a focus on our Managed Security Service relationship (MSS).Manage the search for cyber threats that may go undetected in our environment that have evaded our automated security tools and defences.Accountable for Cyber Security incident response management including the establishment, maintenance and improvement of cyber security incident response plans, procedures, and playbooks.Promote security orchestration, automation, and response (SOAR) solutions for systems and operational playbooks to enable efficient discovery of security events and response actions.Ideal experience:Minimum 5 years+ experience leading Cyber Security Operations teams.Practical experience of incident response governance (lifecycles, frameworks, incident handling) and developing incident response playbooks/processes, Security Orchestration, Automation and Response (SOAR), running red-team exercises and tabletop crisis war games.Working knowledge of SIEM and SOAR solutions, Identity and Access Management and Data Loss Prevention technologies preferably including FortiSIEM, Q-Radar, Sentinel, Darktrace, Microsoft Defender.Experience managing suppliers for an outsourced Managed Security Services (MSS) in an environment with both internal and external IT service providers.Experience monitoring Operational Technology (OT) systems, including Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA)If you feel you fit the bill and are ready for the next step in your career please get in touch for more information.Share