Net Talent is delighted to be partnered with a prestigious housing association who are looking to bring in a Cyber Security professional to work alongside the Head of IT and manage the function ensuring long term security for the organisation. It is a flexible working role that caters for people to work from home 4 days per week with flexibility to attend various offices across the Midlands and South West.
They have significantly enhanced their security measures recently and transitioned to the Security Operation Centre (SOC) model to fortify the protection of data for themselves and their customers.
As the leader in charge of their SOC, your mandate encompasses overseeing all facets of its operations. Your pivotal responsibility involves driving continual enhancements to counter a broadening spectrum of threats in an ever-evolving external threat landscape.
This role necessitates a hands-on approach, drawing from your expertise as a cyber engineer. Your mission is to elevate our service, steering us toward heightened levels of pre-emptive measures, swift detection, and responsive actions. Additionally, you'll serve as the trusted security advisor to the entire organization, providing guidance and expertise in safeguarding our systems and data.
Role & Responsibilities
- Guiding, mentoring, and cultivating our SOC team, fostering growth among internal team members and external partners alike.
- Ensure the continuous evolution of our threat intelligence framework to align with emerging external developments targeting our sector and technology infrastructure.
- Drive ongoing enhancements to our Security Information and Event Management (SIEM) solution, integrating increasingly sophisticated data sources and detection mechanisms.
- Engineer resilient and adaptive security configurations across our entire infrastructure to stay ahead of external threat advancements.
- Define and continually refine business detection and response strategies, establishing essential capabilities, responsibilities, processes, tools, and playbooks while routinely testing their effectiveness.
- Oversee our externally provided Extended Detection and Response (XDR) and Network Detection and Response (NDR) capabilities.
- Coordinate routine security posture assessments, employing recognized attack frameworks at least monthly.
- Conduct thorough SOC-centric evaluations of potential new technologies, ensuring alignment with our detailed policies and seamless integration with our SOC and SIEM infrastructure.
- Collaborate with the Head of Data Governance and Information Security Assurance to uphold a robust set of InfoSec policies and procedures, consistently updated based on current threat intelligence.
- Serve as the ambassador of Technology across the organization, embodying positivity and excellence in your interactions with stakeholders.
- Drive the adoption of our strategic framework and associated practices throughout the company.
Skills & Experience Required
- Experience and proficiency across the spectrum of cybersecurity domains including network, endpoint, application, and cloud security.
- Hands-on involvement in managing security technologies such as SIEM, EDR, Cloud Security, IAM, Privileged Account Management, DLP, CASB, and related solutions.
- Preferred hands-on expertise with Microsoft Azure security product portfolio.
- Proficient in incident response management and conducting in-depth analysis of security alerts.
- Extensive knowledge and practical experience in penetration testing and vulnerability management methodologies.
- Deep understanding of network security, operating systems, and web applications.
- Proven track record in the selection, design, implementation, and administration of security technologies.
- Familiarity with security standards and frameworks such as ISO27001, NIST, and Cyber Essentials. Possession of relevant security certifications like CISSP, CISM, CCSP, CISA, CRISC, OSCP, OSWP, etc.
- Competence in Risk Management processes and collaboration with stakeholders across the organization.
What’s on Offer?
An attractive salary + third sector benefits package including the choice of several attractive pension schemes, leading holiday entitlement, training and development budgets, flexible working around hours and location.