Job Title: Lead – IT Security Operations
Diploma/Bachelor’s degree or equivalent work experience.
As the Lead – Security Operations, you will play a pivotal role in safeguarding the organization’s digital assets and infrastructure. This role involves managing and leading the security operations team, overseeing security measures, and responding to security incidents. You will be responsible for implementing security policies, procedures, and technologies to ensure the organization’s security posture is robust, proactive, and compliant.
- Security Operations Management:
- Lead and manage the security operations team, providing guidance and mentorship to team members.
- Develop, implement, and maintain security policies, procedures, and standards to protect the organization’s assets.
- Collaborate with other departments to ensure the security posture aligns with business goals and compliance requirements.
- Oversee the day-to-day security operations, incident response, and threat detection.
- Incident Response and Threat Detection:
- Lead the response to security incidents, including data breaches, malware infections, and other security breaches.
- Develop and maintain an incident response plan, ensuring it is up to date and effective.
- Implement and manage security monitoring, detection tools, and systems.
- Investigate and analyze security incidents, determine root causes, and recommend remediation actions.
- Security Technology Management:
- Evaluate, implement, and manage security technologies such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection and Prevention Systems), EDR (Endpoint Detection and Response), and firewalls.
- Stay up-to-date with emerging security threats and technologies, adjusting security measures accordingly.
- Manage vulnerability assessment and penetration testing programs to identify and address security weaknesses.
- Security Compliance and Risk Management
- Ensure the organization complies with relevant industry standards and regulations (ISO 27001).
- Perform risk assessments and develop strategies to mitigate security risks.
- Maintain security documentation, audit logs, and reports for compliance purposes.
- Security Awareness and Training:
- Develop and deliver security training and awareness programs for employees.
- Foster a culture of security consciousness throughout the organization.
- Vendor and Third-Party Security:
- Evaluate and manage security vendors and third-party providers to ensure their security measures meet the organization’s standards.
- Conduct security assessments of third-party relationships to minimize potential risks.
- Proven experience in a security operations role, with at least 8 years of experience in information security.
- In-depth knowledge of security technologies, practices, and frameworks.
- Strong understanding of regulatory requirements and compliance standards.
- Exceptional problem-solving and incident response skills.
- Excellent communication and leadership abilities.
- Continuous learning mindset to keep up with evolving security threats and technologies.