Loading...
Share this Job
Apply now »

Security Operation Centre Lead

Location: UK - Hatfield | Job-ID: 36982 | Contract type: Standard | Business Unit: Others

 

 

Security Operations Center Lead

 

About the Team

 

Computacenter is creating a new Security Operations Center, SOC, to ensure a coordinated response to the increasing cyber threats to the business. The Security Operations Center Lead will be responsible for the creation of the new function and delivery of SOC services to Computacenter locations across the globe.

 

The SOC Lead will be accountable for the delivery of the operational and strategic security functions provided by the SOC within Computacenter, ensuring an exceptional standard of service delivery.

 

The SOC and CSIRT mission is to provide specialist cyber defence protection to Computacenter employees across the globe.

 

Your responsibilities will include:

  • Leadership of the Security Operations Centre function to support the protection of Computacenter from cyber threats;
  • Accountable for Security Operations Center strategy in terms of people, process and technology;
  • Working with the Cyber Defence Operations Director, you will be accountable for the strategy and evolution of the Security Operations Center;
  • Supporting the CISO and Cyber Operations Director with the overall information security strategy;
  • Driving the service quality and evolution of the SOC and the cyber defence capabilities to Computacenter;
  • Provide high-quality, prioritised and up-to-date information about the evolution of security threats that are relevant to Computacenter;
  • Leadership & management of team 14+ information security professionals, including a 24/7/365 Cyber Defence Center. This will include line management responsibilities such as recruitment, training, coaching, performance reviews, together with technical & personal development programs;

 

The Role

The role will lead a team of security experts that will deliver a core cyber security capability including benchmarking security standards, security information and event management, vulnerability analysis, security incident response & cyber security investigations and threat hunting.

The SOC lead will:

  • Be accountable for improving the maturity of the SOC and maintain oversight of the service offerings delivered;
  • lead of the Computacenter Cyber Security Incident Response Team (CSIRT);
  • Work with the Cyber Defence Operations Director to ensure capabilities and technology are improving the cyber defence capability;
  • Ensure that new security intelligence and monitoring feeds are integrated into the SOC to provide effective monitoring of the Computacenter;
  • Be responsible for building and maintaining strong relationships with key stakeholders, such as Computacenter & Customer Information Security Management Leadership, CTO's, Technology Operations, business service owners and any 3rd parties; monitoring quality & escalating issues as necessary;
  • Be accountability for the SOC service and oversee the delivery and quality of the service in line with agreed operational and service level agreements;
  • Oversee and manage the relationship with 3rd parties that delivering SOC technology platforms (SIEM, Vulnerability etc);
  • Manage senior relationships with the business and act as the final escalation point for the SOC;
  • Ensure timely delivery of threat intelligence and SOC operational reports;
  • Deliver regular KPI metrics related to cyber Security threats;
  • Support the SME's and Cyber Defence Center within the SOC and ensure integration and collaboration within the team;
  • Manage the learning and develop requirements to meet the future needs of the SOC function;

 

Essential skills and experience

  • Substantial experience (10 years+) in Information and Cyber Security
  • Substantial experience in leading a Security Operations Centre;
  • Experience in delivering security services;
  • Excellent SIEM tooling knowledge including technologies such as Sentinel and Splunk. Open Source capabilities, such as Elastic is desirable;
  • Experience in end to end information security incident management and mitigating and addressing threat vectors including but not limited to Advanced Persistent Threat (APT), Distributed Denial of Service (DDoS), Phishing and Malware;
  • Experience with common security enforcing functionality including Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Web Application Firewalls, Network Firewalls, Log analysis and Security Information and Event Management (SIEM) systems;
  • Security experience of working in Cloud environments such as Azure, AWS & GCP;
  • Understanding of threat-based frameworks such as MITRE ATT&CK;
  • Experience training and developing teams;
  • Good understanding of information assurance standards and frameworks including ISO 27001, Cyber Essentials/Essentials Plus, GDPR;
  • Recognised information security and/or information technology industry certification (CISSP, CISA, CISM, GIAC or equivalent);
  • Working in a fast paced, shared services matrix environment;
  • Fluent in English (German and French language skills are desirable);
  • Must have or be able to obtain UK security clearance.

 

Current information for our applicants

Business as usual? Not quite. Of course, the Corona crisis also presents us with major challenges.

 

However, we are broadly positioned across various industries, plan for the long term and have always been flexible in our approach to our customers, especially in times of crisis. Our core business is digitisation. We believe that this topic will continue to grow in importance for many companies in both public and private sectors.

 

That's why there are still areas of our business with clear hiring requirements – and we would like to bring talent like you on board! By the way, we have completely virtualised our application process and our recruiters remain available to you should you have any questions.

 

We are still looking forward to getting to know you!

 

About us

Computacenter is a leading independent provider of IT infrastructure services, with about 16,000 employees worldwide and a global revenue of £5.05 billion (2019). We work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing our customers’ infrastructures.

 

We offer a friendly, open working environment without too much fuss about hierarchy. We are looking for professionals with diverse competencies, personalities and strengths who want to live our shared value of teamwork and performance.

 

Interested in joining a company with a strong sense of community?

 

We’re growing. We’re hiring. We encourage. We empower. We support.
#winningtogether

Apply now »