Responsibilities
- Develop, plan and implement projects to continually improve cyber security to protect the business, improve services and increase efficiency within the business
- Manage the technical security stack and ensure robust security and reporting framework for all critical systems.
- Ensure that the documentation and support processes are compliant, in place and regularly reviewed for all systems
- Manage internal and external relationships with security partners and clients.
- Work with the IT Service Desk to ensure incident/problem management is completed effectively
- Lead and coach the security team in your area of expertise, ensuring proper processes are in place and followed
- Develop effective Disaster Recovery and Business Continuity plans for the systems under your control
- Senior point of contact on Cyber incidents, taking incident manager role for the duration.
- Review the security best practice guides and ensure they apply to the network infrastructure
- Maintain certification Cyber Essentials Plus
- Penetration test management and remediation management
- Vulnerability testing of applications and websites owned and created by the Group.
Qualifications
- A Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or a related STEM field or relevant technical qualification
- 5+ years in IT, with at least 4-5 years specifically in a cybersecurity role
- Proven experience implementing security solutions, managing incident responses, and leading projects to improve enterprise security posture
- Proficiency in AWS, Azure, or GCP cloud platforms is essential
- In depth knowledge of security standards for network, firewalls and Intrusion Detection/prevention systems
- Experience with AD, Entra ID (Azure AD), and conditional access policies
- Hands on experience of a wide range of security tooling required for an enterprise organisation
- Experience using Python, PowerShell, or Bash
- Experience with penetration testing tools and managing patch cycles
- Proven ability to deal with a range of stakeholders within the business, at all levels, and provide appropriate technical security advice
- Proven experience leading an enterprise wide security incident
Certifications
- CompTIA Security+ (or higher, like CASP+), CEH (Certified Ethical Hacker)
- Experience playing a key security role in IT and Business Projects
#J-18808-Ljbffr…
