Security Operations Manager - Cape Town, South Africa - Pure Placements (PTY) LTD

Pure Placements (PTY) LTD

Verified Company

Cape Town, South Africa

2 weeks ago

Posted by:

Thabo Mthembu

beBee Recruiter

Description

The
Security Operations Manager will be a senior member of the team. They will provide a best-in-class service to the business helping to protect the company's information and systems.

They will need to lead operational security initiatives and help develop standards that need to be applied to the operating environment and will work with the technical teams who are responsible for implementing and maintaining the systems.

They will need to work with the Global Head of Information Security and Head of Security Operations to develop and maintain the Information Security Management System based on the ISO 27001:2022 standard.

Responsibilities will include:

Take responsibility for daytoday operations within the operational security team ensuring tasks, audit items and operational procedures are executed efficiently and effectively.
Manage the daytoday operations of Information security covering areas such as incident investigation, security tool monitoring and investigation, escalation management from the managed SOC, and threat feed monitoring.
Provide security posture oversight to ensure the company's control requirements and technologies are being correctly applied.
Provide support and escalation for operational security issues actively participating in major incident response and minimising any impact.
In conjunction with the technical teams, develop technical security standards ensuring industry best practice is applied whilst considering the risk appetite and needs of the company.
Providing technical security advice for projects and changes, including design of technical controls, review of business process controls and input to secure software development lifecycle standards.
Review and sign off technical security designs, and provide technical policy authoring.
Carry out security assessments on suppliers as part of our Third Party Risk Management programme.
Operation of incident management runbooks, including regular testing.
Support of ongoing awareness programmes including supporting staff education, running regular phishing tests, and producing intranet announcements to advise of new and emerging threats.
Ownership of the vulnerability management process ensuring technical vulnerabilities are reviewed and working with our technical teams, remediated in accordance with our standards.
Work with technical and development teams to ensure the implementation of our cloud services and technologies are secure.
Research emerging threats and vulnerabilities to aid in the identification of incidents and support the creation of new architecture, policies, standards and technologies to address them.
Support investigations into compliance, policy or data breaches as required.
Support the production of regular reporting demonstrating the effectiveness of the security operations function.
Monitor relevant information sources and informationsharing services to stay up to date on current attacks and trends.

Requirements:

Knowledge and expertise in crossborder regulations and global data protection laws, such as GDPR and regulatory demands associated with working in financial business.
Experience in working with security incident response plans and ensuring those are fit for purpose.
Experience working with technical people responsible for implementing security technology
Experience with security monitoring, detection, prevention and control systems
Ability to stay current with tactics techniques and procedures adopted by the various threat actors and the mechanisms to mitigate these.
Ability to dig into details as well as analyse data from a highlevel view
CISSP/CISA/CISM or Microsoft Security certifications
Knowledge of Azure, M365, OWASP Top 10, SANS Top 20, MITRE Attack framework etc.