Information Security Manager

Information Security Manager (SOC Manager), Berkshire, Information Security, CCIE, Degree Educated. £90-100k, Berkshire, Cloud, SaaS, UcaaS, Contact Center. Degree and Professional Qualifications.

Overview: The Information Security Manager leads the Security Operations Centre (SOC) function and provides support to the CISO on technical security. Proposes and advocates on technical security strategies and implements policies and processes in support of internal IT systems, private cloud, and public cloud usage. Drives the technical functions within the business to protect customer and business data/systems at all times. This is a highly technical role working within the CISO function which manages information security, certifications, compliance, and quality. Degree qualified, and with Industry Certifications.

Build, Develop & Maintain SOC function

• Build a team, policies, technologies, and processes to develop a world-class security function.
• Lead on all technical aspects of IT security for the commercial operations and internal systems.
• Select, implement, maintain, and use security tools to provide relevant management information and protection. Responsible for the security incident response process ensuring that this process is annually tested and iteratively improved.

Technical Delivery

• Provide high-quality IT Security guidance documentation and training in conjunction with the CISO to the internal technology teams (Internal IT, Operations, Application Development).
• Carry out technical vulnerability assessments of IT systems and processes, identifying potential vulnerabilities to Platform(s) and Corporate systems and processes, making recommendations to the technology management and the CISO to minimize risks identified.
• Liaise with external security agencies where required and ensure that any information requested is provided on a timely and secure basis.
• Contribute to the architectural functions in each team to ensure that privacy and security by design are created with final compliance as a goal.
• Responsible for ensuring any new vulnerabilities are resolved/mitigated in line with risk-based prioritization (business and technical).
• Lead and act as a strategic and tactical partner in the operational and technical development of the SOC.
• Liaise with other key functions within the business as required (CTO, CIO, CISO, Operations, Infrastructure Services, Support, Sales & Procurement).
• Establish and maintain excellent relationships with all other technology groups.
• Initiate review and suggest improvements to the products (through Product Management) and services provided.
• Respond rapidly and effectively to IT security incidents, managing them in a professional manner, reporting to the CISO.
• Assist in performing computer forensics for evidence gathering and preservation.
• Contribute to the IT risk register and carry out assigned actions to mitigate risks identified.
• Keep up to date with security trends, threats, and control measures.