Manager- Cyber Security Operations

Role Summary:

At least 10+ years of experience in Cybersecurity with hands-on capability is network & other security technologies. The Cybersecurity Operations Manager will work closely with the SOC (Security Operations Centre) & Managed Security Services team to detect, analyse, respond and mitigate cybersecurity incidents.

• Knowledge & skills in managing security policies & standards in Microsoft Azure, Active Directory, Office 365, SharePoint platforms
• Comprehensive understanding of Information Security Frameworks (e.g., ISO 27001, NISTCSF and Cyber Essentials) and Privacy regulations, including DPDPA & GDPR.

Stakeholder Coordination

• Serve as the primary liaison between business units, IT & functional leadership, and group cyber security teams.

Operational Oversight

• Manage and maintain the technology portfolio of enterprise information protection services.
• Ensure regular maintenance and timely upgrades of security systems & services to prevent downtime and enhance performance.

Incident Detection & Response

• Accountable for Security Incident Management. Maintain and improve security incident response procedures and playbooks.
• Oversee the daily monitoring and review of security event activities and cyber threat landscape to ensure ongoing and continued maturity of the organization’s security controls in close coordination with SOC & MSS team
• Manage resolution of cyber security incidents and coordinate with engineering support for security systems.
• Identify and diagnose potential threats, including root cause analysis and after-action reviews to ensure security controls defend the enterprise against potential cyber threats
• Collect and analyses cybersecurity threats to develop a deep understanding and awareness of cyber threats and actor’s tactics, techniques and procedures (TTP) to derive and report indicators that help organisations detect and predict cyber incidents and protect systems and network from cyber threats.
• Proactively searches for undetected threats in networks and systems, identifies their indicators of compromise (IOCs), and recommend mitigation plan

Reporting and Documentation

• Develop & streamline process and procedures for efficient security operations.
• Provide regular reports & metrics on service operations
• Perform routine audits on security of the infrastructure and present findings.

Governance & Compliance

• Conduct periodic service review meetings with relevant stakeholders – both internal & external.
• Ensure adherence to security controls and policies