Manager Security jobs in United Kingdom

kdc/one Corporate Longueuil, 375 boul Roland-Therrien, Longueuil, Quebec, Canada Req #4484

The KDC/ONE team is made up of the best in the business. Our diverse and evolving workforce thrives in our environment of constant teamwork and collaboration. Join us today!

The Director Security & IAM is responsible for cybersecurity operations as well as performing identity and access management (IAM) for kdc/one worldwide (more than 4,500 users in 50 locations across the Americas, Europe and Asia).

He/She will work in collaboration with the corporate IT operations teams, local support technicians and other stakeholders to ensure that security policies, standards and controls are applied and functioning as intended. The incumbent will also contribute to enhancing security by establishing best practice procedures for incident management and acting as technical lead for the Cybersecurity Incident Response Team.

In addition to cybersecurity operations, he/she will ensure that identities and access to IT resources are properly managed, establishing a robust role-based approach.

• Manage a small team of Security Analysts across the globe, providing follow-the-sun coverage for 2 nd level incident response.
• Manage relationship with MDR service provider (1 st level incident response).
• Establish the Cybersecurity Incident Response plan and exercise the plan periodically to maintain knowledge and awareness.
• Ensure that identities (human and system) are managed throughout their lifecycle.
• Ensure that access to IT resources is strictly controlled (role-based access).
• Leverage automation and AI to accelerate detection and response times (e.g SOAR)
• Lead or participate in security investigations.
• Assess needs for any security reconfigurations (minor or significant) and execute them if required.
• Monitor all in-place security solutions for efficient and appropriate operations, including review of logs and reports.
• Participate in the deployment, integration and initial configuration of new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures.
• Work closely with IT and business stakeholders to fully secure information, computers, networks, and processing systems.
• Participate in the execution of vulnerability assessments, penetration tests and security audits.
• Manage connection security for networks, Web sites, the company intranet, and e-mail communications.
• Create and maintain documentation of existing security infrastructure.
• Keep current with emerging security threats, alerts and issues.
• Interact with vendors, outsourcers, and contractors to obtain or maintain protection services and products.

• Degree in the field of Computer Science or other related field
• Five years or more of cybersecurity related work experience :
  • Cybersecurity Incident Response,
  • Identity and Access Management, and/or
  • Threat hunting and incident investigation
• Two years or more of team leadership experience.
• Preferred certifications include:
  • CompTIA Security+ (or other Information Security Training)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • ITIL
• Knowledge of NIST security framework and CIS controls
• Knowledge of cybersecurity best practices (Zero-trust, RBAC,…)
• Strong technical knowledge of current cybersecurity technologies (SIEM, SOAR, NAC,…)

• Able to read and understand technical manuals, procedural documentation, and OEM guides.
• Ability to organize and manage multiple priorities.
• Self-starter with strong work ethic, positive attitude and strong attention to detail.
• Strong communication (both written and oral), interpersonal, team building and organizational skills.
• Ability to research, troubleshoot and investigate security issues.
• Ability to promote and participate in a team-oriented and collaborative environment.
• Strong problem solving, analytical methods and technical skills.
• Self-motivated and directed, with the ability to effectively prioritize and execute tasks in a high-pressure environment.
• Fast learner.
• English well spoken and written - English being the language used at KDC for international business relations.