Cyber Security Operations Manager

2 Months ago • All levels • Cyber Security

Job Summary

Job Description

As a Security Operations Manager at Two Circles, you will play a key role in protecting systems, people, and data from threats. Your responsibilities include incident detection, response, and remediation; threat hunting; security monitoring; and providing technical assurance. You will maintain and improve security in line with standards like SOC 2 and ISO 27001, working with Legal, Privacy, and the wider Technology team. You will also train colleagues on security awareness, OWASP Top 10, and Security by Design. Additionally, you'll engage with clients and partners to support their security assurance needs, manage Security Operations, and support Continual Security Improvement. You'll oversee operational security tasks, provide technical expertise for compliance initiatives, improve user understanding of Information Security, and implement new ways to automate and improve security.
Must have:
  • Experience with GDPR/UK Data Protection, Cyber Essentials, and ISO 27001 frameworks
  • Experience in managing technical risks and proposing solutions
  • Experience in Security Operations procedures, i.e. Incident management and response
  • Experience in configuring, optimizing, and reporting with Microsoft 365 Security and Compliance modules
  • Experience in configuring and maintaining endpoint security technologies (AV, firewall, encryption, email protection, web filtering)
  • Experience with Azure security tooling including Security Centre, Defender, Sentinel, Intune
  • Ability to understand and effectively communicate technical concepts
  • Broad knowledge around network technologies (especially cloud) and technical security
Good to have:
  • Experience with NIST, SOC2 and additional compliance and regulatory frameworks
  • Experience in Project Management and technical delivery
  • Experience of, or a keen interest in, the business of sport

Job Details

Role Profile:

As Security Operations Manager at Two Circles, you play a key role in keeping our systems, people and data safe from external and internal threats by focusing on incident detection, response and remediation; threat hunting; security monitoring; continual improvement and providing technical assurance for solution design and changes.

This will include maintaining and improving our security posture in tandem with GRC practices and policies as they evolve to align with current and future standards and frameworks, such as SOC 2, ISO 27001, as well as applicable legislation, including GDPR and UK DPA, working closely with our Legal and Privacy as well as the wider Technology team.

Internally-facing, you will help train and upskill your fellow Two Circlers on topics such security awareness, OWASP Top 10 and Security by Design, as well as understanding and feeding into their processes and workflows, to keep good security practice on the agenda.

Externally, this role will also engage with our fascinating clients as appropriate to support their security assurance needs, as well as our technology partners and suppliers to ensure their alignment with our security approach and requirements.

Internally, you will be responsible for our Security Operations activities with our operational team and external partners, including Incident Response and Threat Intelligence, to ensure these are executed consistently to our standards, as well as supporting Continual Security Improvement and being the Tech Ops representative in the GRC working group.

Your main duties & responsibilities:

  • Operationalising and ensuring delivery of security policy, standards and procedures
  • Assuring day-to-day execution of operational security tasks across multiple areas including threat and vulnerability management, anti-virus management, security monitoring etc.
  • Supporting the Technology team to keep information security infrastructure up to date with emerging threats and vulnerabilities, including advising on architecture and design of internal and client-facing solutions
  • Providing technical expertise towards compliance initiatives and programmes e.g. ISO 27001, Cyber Essentials Plus, GDPR
  • Technical aspects of vendor and partner security reviews
  • Increasing the levels of understanding of Information Security with end users, leading to improved user interactions and overall experience with our team
  • Thinking of and implementing new ways to automate and improve security across the business
  • Protecting the data entrusted to us by our clients at all times

The ideal background and skills we are looking for include:

  • Experience with GDPR/UK Data Protection, Cyber Essentials and ISO 27001 frameworks
  • Managing technical risks and proposing solutions and recommendations
  • Security Operations procedures, i.e. Incident management and response
  • Configuring, optimising and reporting with Microsoft 365 Security and Compliance modules, including Defender, Security Centre, Protection, Compliance Centre
  • Configuring and maintaining endpoint security technologies (AV, firewall, encryption, email protection, web filtering)
  • Azure security tooling including Security Centre, Defender, Sentinel, Intune
  • Able to understand and effectively communicate technical concepts in discussions with both technical and non-technical colleagues
  • Broad knowledge around network technologies (especially cloud) and technical security
  • Awareness of architectural principles for technical solution design, e.g. Zero Trust, least privilege RBAC, Security by Design, PAM, Segregation of Duties
  • Data Protection and DLP

Experience with the following would also be beneficial:

  • NIST, SOC2 and additional compliance and regulatory frameworks
  • Project Management and technical delivery
  • Experience of, or a keen interest in, the business of sport

Similar Jobs

plana technologies - DevOps Engineer

plana technologies

Montevideo, Montevideo Department, Uruguay (Remote)
1 Week ago
Palo Alto Networks - Principal Consultant, Proactive Services (Unit 42)

Palo Alto Networks

Drenthe, Netherlands (Remote)
1 Month ago
Demandbase - Manager, Database Reliability Engineering (DBRE)

Demandbase

(Remote)
1 Month ago
Fortra - Security Analyst

Fortra

Australia (On-Site)
1 Month ago
Saviynt - IGA/IDM Principal Architect, Professional Services

Saviynt

Bengaluru, Karnataka, India (Hybrid)
1 Week ago
Apple - iOS Engineer, Apple Pay Security

Apple

New York, New York, United States (On-Site)
2 Months ago
Tencent - Senior Client-Side Security Engineer

Tencent

Shenzhen, Guangdong Province, China (On-Site)
1 Month ago
Mcdonalds - Senior Analyst, Cybersecurity Operations (Detection & Response)

Mcdonalds

London, England, United Kingdom (On-Site)
1 Month ago
Thales - Consultant Cybersecurity Architect

Thales

Lyon, Auvergne-Rhône-Alpes, France (Hybrid)
1 Month ago
Flexera Software - Application Security Engineer

Flexera Software

Bengaluru, Karnataka, India (Hybrid)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Pattern - Security Architect

Pattern

Lehi, Utah, United States (On-Site)
1 Month ago
Scale AI - Senior Security Engineer, Incident Responder

Scale AI

San Francisco, California, United States (On-Site)
2 Months ago
Telastra - Staff Engineer - Platform Engineering Security Specialist

Telastra

Australia (On-Site)
1 Week ago
Varonis  - Technical Account Manager

Varonis

United States (Remote)
7 Months ago
Reddit - Senior Software Engineer, Security Partner

Reddit

Seattle, Washington, United States (On-Site)
1 Month ago
NVIDIA - Director of Business Continuity

NVIDIA

Santa Clara, California, United States (On-Site)
3 Months ago
Techland - Security Producer

Techland

Wrocław, Lower Silesian Voivodeship, Poland (On-Site)
1 Month ago
Saviynt - PMO Analyst - Expert Services

Saviynt

Bengaluru, Karnataka, India (Hybrid)
2 Months ago
Roof Stacks - Head of Backend Development

Roof Stacks

İstanbul, Türkiye (Hybrid)
1 Month ago
blue byte - ubisoft - Site Reliability Engineer [Game Security]

blue byte - ubisoft

Düsseldorf, North Rhine-Westphalia, Germany (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in London, England, United Kingdom

Just wont die - Senior/Unreal Developer

Just wont die

Cambridge, England, United Kingdom (On-Site)
2 Months ago
Funko - ERP Business Systems Analyst

Funko

Coventry, England, United Kingdom (On-Site)
1 Month ago
ISS Stoxx - Principal Platform Engineer

ISS Stoxx

London, England, United Kingdom (On-Site)
1 Month ago
DraftKings - Senior Data Science Engineer

DraftKings

London, England, United Kingdom (On-Site)
2 Months ago
Tangle Wood Games - Senior Rendering Engineer

Tangle Wood Games

Hartlepool, England, United Kingdom (Remote)
1 Month ago
Accurate - Service Delivery Coordinator

Accurate

Brighton And Hove, England, United Kingdom (Hybrid)
7 Months ago
Assystems - Mechanical Engineer

Assystems

Culham, England, United Kingdom (Hybrid)
8 Months ago
Whalar - Sales Account Manager

Whalar

London, England, United Kingdom (Hybrid)
1 Month ago
Double Eleven - Lead Artist

Double Eleven

Middlesbrough, England, United Kingdom (Hybrid)
1 Month ago
Rolls-Royce - Structural Integrity Engineer (FEA) - Submarines

Rolls-Royce

Derby, England, United Kingdom (On-Site)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Larian Studios - Lead Security & Network Engineer

Larian Studios

Warsaw, Masovian Voivodeship, Poland (On-Site)
3 Months ago
Optiv - Sr. Client Manager - Cybersecurity

Optiv

Winnipeg, Manitoba, Canada (On-Site)
2 Months ago
binance - DevSecOps Engineer, Infrastructure Security

binance

Taipei City, Taiwan (Remote)
11 Months ago
Rackspace Technology - Senior Network Security Engineer

Rackspace Technology

Riyadh, Riyadh Province, Saudi Arabia (On-Site)
3 Weeks ago
Glean - Security Engineer

Glean

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Experian - Security Engineer - Scripting and Automations

Experian

Allen, Texas, United States (Remote)
1 Month ago
Google - Software Engineer III, Security/Privacy, Google Cloud

Google

Sunnyvale, California, United States (On-Site)
2 Months ago
ARHS - Cloud Engineer / Security and Compliance Specialist

ARHS

Brussels, Brussels, Belgium (Remote)
7 Months ago
BigID - Principal Software Engineer - AI Security

BigID

Tel Aviv-Yafo, Tel Aviv District, Israel (Remote)
1 Month ago
Tide - Staff Security Engineer, Identity

Tide

Bengaluru, Karnataka, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

About The Company

London, England, United Kingdom (Hybrid)

London, England, United Kingdom (Hybrid)

London, England, United Kingdom (Hybrid)

London, England, United Kingdom (Hybrid)

Melbourne, Victoria, Australia (Hybrid)

Sydney, New South Wales, Australia (Hybrid)

View All Jobs

Get notified when new jobs are added by Two Circles

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug