Senior Security Manager

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

The Role
Position: Senior Security Manager
Contract Type: Full-Time
Reporting To: Group Cyber Security Officer
Location: London

About the Role
The role will be responsible for key security operational capabilities and take ownership of the service improvements on behalf of the Group Cyber Security Officer. The role work with key stakeholders to ensure that our security posture and the security standards are implemented and maintained to organisational and industry practices. This is an opportunity for the successful candidate to shape cybersecurity capabilities across Blinx and their customer base in order to drive improve security operational practices.

Key Responsibilities
• Drive security operations structure that generates clear metrics, reporting lines and security responsibilities across the portfolio of internal customers and Blinx Technology.
• Develop and maintain technical posture assessments of core systems and environments that Blinx manage, harvesting data from security and supporting systems.
• Develop and maintain appropriate technical cybersecurity policies, procedures and standards and ensure they are aligned with any organisation requirements and industry best practices.
• Assess and manage cybersecurity risks associated with third-party vendors and service providers. Implement the vendor risk assessment processes and ensure cybersecurity contractual requirements for cybersecurity are considered.
• Manage, where required, cybersecurity incidents on behalf of the Group Cyber Security Officer, supporting Security Operational Analyst and MDR team.
• Support and advise on the deployment of appropriate tools technologies and configurations, ensuring that they align with the organisational security standards and operationalised for security capabilities.
• Conduct regular review and assessments of cybersecurity controls and processes. Implement lessons learned to ensure continued improvement, and stay abreast of emerging threat, vulnerabilities and best practices in cybersecurity.
• Foster collaboration and communication with other departments and business units to ensure alignment of cybersecurity initiatives with business objectives. Establish channels for reporting cybersecurity concerns and incidents

Your Professional Experience and Skills
• At least five years of working in a similar role.
• Strong stakeholder engagement and interpersonal skills with excellent written reports and presentation skills.
• Problems solving skills with an aptitude for identifying complex cybersecurity challenges and developing innovative solutions to address them effectively.

Technical experience Must have technical experience
• Managing and operating security technologies within Microsoft Stack (Defender, Exchange, M365, Azure).
• Strong conceptual understanding of core security technologies and capabilities (e.g. Firewalls, SIEM, EDR, Email Gateway, IAM/PAM, CASB).
• Demonstrable understanding of how cybersecurity technologies support meeting security controls in industry frameworks (ISO27001 and NIST CSF).
• Appreciation of regulatory and compliance requirements (such as GDPR, HIPAA, PCI DSS, etc).
• Proficiency in risk management and technical assessment methodologies.
• Proven policy, procedure and standard development in all areas of cybersecurity.

Nice to have technical competencies
• Understanding of vulnerability assessment techniques and practices.
• Cybersecurity incident response and management experience.

Qualifications
• Two or more of the following certifications:
o CISSP
o CISM
o CRISC
o Microsoft SC-200
o Microsoft SC-100
o CompTIA CASP+
o CompTIA CySA+