Security Operations Center (SOC) Manager

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

Description

The firm:

Companies, investors and government entities around the world turn to Alvarez & Marsal (A&M) for leadership, action and results. Privately held since its founding in 1983, A&M is a leading global professional services firm that provides advisory, business performance improvement and turnaround management services. When conventional approaches are not enough to create transformation and drive change, clients seek our deep expertise and ability to deliver practical solutions to their unique problems. With over 10,000 people providing services across six continents, we deliver tangible results for corporates, boards, private equity firms, law firms and government agencies facing complex challenges. Our senior leaders, and their teams, leverage A&M's restructuring heritage to help companies act decisively, catapult growth and accelerate results. We are experienced operators, world-class consultants, former regulators and industry authorities with a shared commitment to telling clients what is really needed for turning change into a strategic business asset, managing risk and unlocking value at every stage of growth.

The role and team:

With the growth of the business globally we are expanding our Global Security Office (GSO) and are looking to recruit a Security Operations Center (SOC) Manager to join the team in London . Reporting to the Chief Security Officer, you will come from an Information Security background with experience of serving as a trusted SOC Manager to mid-large sized organisations.

Key Responsibilities:

• SOC Leadership: Lead and inspire a team of highly skilled security professionals, cultivating a culture of excellence, discipline, and innovation. Promote teamwork, growth, and professional development.
• Strategic Vision: Develop, communicate, and execute the SOC's strategic vision, aligning it with the company's global security strategy. Continuously elevate the capabilities and efficiency of the SOC.
• Operational Oversight: Ensure seamless 24/7 operations of the SOC, with an unwavering focus on threat detection, risk assessment, and incident response. Ensure the highest level of readiness.
• Security Protocols: Establish and enforce stringent security protocols, including access control, incident reporting, and response procedures. Stay informed of the latest global security trends, integrating them into SOC operations.
• Technology Integration: Stay at the forefront of security technology, overseeing the integration of cutting-edge tools and software into SOC operations. Enable proactive threat identification and response through the effective deployment of security systems.
• Crisis Management: Develop comprehensive crisis management plans and lead the SOC team in handling critical incidents effectively, minimizing impact to clients. Continuously refine and enhance response strategies.
• Risk Analysis: Conduct ongoing risk assessments, threat analysis, and vulnerability management. Adapt strategies to mitigate emerging threats and develop a culture of proactive threat prevention.
• Global Coordination: Collaborate with regional security and IT teams, Legal team, and other internal stakeholders to ensure seamless coordination in the event of a security incident. Build strong partnerships with key stakeholders.
• Security Program Development: Develop and implement comprehensive security programs that meet or exceed industry standards. Regularly assess and enhance the effectiveness of security programs to stay ahead of evolving threats.
• Meeting Industry Standards: Establish and monitor key performance indicators (KPIs) to assess the SOC's performance against industry standards. Develop and execute plans to reach and surpass these standards.
• Team Development: Mentor, train, and develop SOC staff, ensuring they are equipped with the skills and knowledge to meet the highest standards in security operations. Promote a culture of continuous learning and improvement.
• Reporting: Provide detailed reports to senior management and clients, offering insights, metrics, and recommendations to enhance security measures. Ensure transparent and effective communication channels

Required Skills:

• Proficient in thorough Incident Management, Response and reporting
• Experience in security device management and SIEM (QRadar, Splunk)
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management as well as TTP's (tactics, techniques and procedures)
• Experience in threat management and continuous assessment using CMM
• Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix
• Knowledge of applications, databases, middleware to address security threats against 3-tier environments
• Proficient in preparation of reports, dashboards and documentation such as technical runbooks driven by frameworks like MITRE
• Excellent communication and leadership skills
• Experience in performing vendor management, especially outsourced SOC
• Ability to handle high pressure situations with key stakeholders
• Excellent Analytical skills, problem solving and interpersonal skills
• Working knowledge and experience with MS office with proficiency in Excel

Educational Qualifications:

• Bachelor of Science Degree - preferably in Information Security
• CISM - Certified Information Security Manager
• CISSP - Certified Information Systems Security Professional
• CEH - Certified Ethical Hacker
• Additional certifications in the Information Security domain