IT Security Operations Manager

Application deadline date has been passed for this Job.
This job has been Expired
Job Description

The IT Security Operations Manager will be responsible for the management of the AA’s Security Services and Tooling, security protection, detection and response; leading the resolution of any IT security breaches; and remediating any identified security risks. The role has line management responsibility for a small number of internal security operations analysts (1 or 2) and manages a key interface with our MSSP SOC.

What will I be doing?

  • Contribute to the AA’s security strategy
  • Manage and develop the AA’s Security Services / Tooling in-line with the security strategy
  • Deputise for the Head of Security Operations, supporting, managing and developing a sustainable Security Operations team
  • Market our Security Operations to the wider AA business, embedding the Security Culture in the AA
  • Take a Threat-led approach to Security Operations, leading Threat Assessments / Modelling to drive appropriate, cost effective, detection and response
  • Drive Automation and Integration across the estate
  • Monitor, research, evaluate, and maintain / engineer systems, alerts and procedures to protect the AA from unauthorised and/or malicious activities across multiple platforms
  • Provide analysis, assessment and trending of security log data from a large number of heterogeneous security devices
  • Assess the security impact of security alerts and traffic anomalies to be able to gather a broad view of the overall risk profile of the AA
  • Leverage understanding of Operating Systems: Windows & Unix/Linux and network devices in support of identifying security incidents and to have a proper overview of risk profile
  • Executes analysis of email-based threats to include understanding of email communications, platforms, headers, transactions, and identification of malicious tactics, techniques, and procedures
  • Assist with proactive threat analysis, vulnerability identification and remediation, and network/host vulnerability scanning.
  • Analyse potential cyber threats from a variety of intakes taking appropriate response actions to include threat containment and/or escalation
  • Leverage Network security tools and capabilities to support Cyber Threat Monitoring activities
  • Optimise tuning and filtering for AA SecOp tools
  • Provide Incident Response (IR) support and leadership when analysis confirms actionable high severity incidents, working with the wider AA IT Operations teams
  • Participate in major incident reviews, post implementation reviews and problem reviews to assist with the identification, review and analysis of security incidents or threats to service

What do I need?

  • Experience working in a similar role
  • People management and leadership skills
  • Excellent communication and stakeholder management skills
  • Hands-on capability and knowledge of methodologies and processes, and technical security solutions
  • Understanding of Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture
  • Good Knowledge of Enterprise EDR / Anti-Virus, IDS, Full Packet Capture and Host/Network Threat Analysis
  • Knowledge of common Internet protocols and applications
  • Ability to multi-task, prioritise, and manage time effectively
  • 3rd party management experience
  • Knowledge of Threat Monitoring Procedures
  • Proven experience working within 24/7 IT operational environment
  • Proven experience delivering continuous service improvements for the business
  • Industry-level operational IT security certifications in good standing (e.g., CISSP, CCNA, SABSA SCF, SSCP, CEH)
  • Educated to HNC level in IT communications or a related technical subject, or equivalent professional accreditation

Additional Information

What’s in it for you

As a valued member of our team, you’ll have access to a range of fully supported development programmes, designed to help you progress in your career with us. Whether you’re looking to grow in your current role, or learn new skills and take on greater responsibilities, we can help you build the career you’re looking for here.

We’re always looking to recognise and reward our employees for the work they do. Here are just a few of the benefits you’ll have access to, as part of our team:

  • Annual discretionary performance related bonus scheme
  • Car allowance
  • Private Medical Insurance
  • 25 days holiday (excl. bank holidays)
  • Contributory pension scheme
  • Discounted home and motor insurance
  • ​Half price AA breakdown membership in your first year and free after 12 months, along with a 50% introductory discount off breakdown cover for 12 months for up to 5 friends/family members.
  • Flexible benefits
  • Plus, so much more!

Good conduct matters to us. Our teams are motivated by doing the right thing for both customers and colleagues, and in line with our values, we ask all our employees to act with honesty & integrity and respect for others at all times.