Security Operations Centre Manager (3776)

About GBG
GBG is the leading expert in global identity and location. In an increasingly digital world, GBG helps businesses grow by giving them intelligence to make the best decisions about their customers, when it matters most.

Every second, our global data, agile technology, and expert teams, power over 20,000 of the world’s best-known organisations to reach and trust their customers.

Why you should be@GBG
Reach

The precision of location data is critical to businesses that need to know exactly where their customers are so they can reduce failed deliveries, share great customer experiences and remove unnecessary costs. We provide the unique insight to know locations as well as the people who live there, because we understand global addresses better than anyone else.

This means our customers have confidence that their products and services will arrive in time and to the right location In the race to serve global customers, we exist to help every business in the world, reach every customer in the world.

Trust

When a digital business grows, most customers are genuine. However, many are fraudsters who manipulate identities to gain illegitimate access. We give our customers unique insight to decide which are trustworthy and which are fraudulent, because we understand identity better than anyone else.

This means businesses can confidently onboard good customers, reward great customers and reject fraudsters. In the fight against Identity, Fraud, trust is key, so the more you can know and the earlier you know it, the better decisions you can make.

The Role
The Security Operations Manager is responsible for the day-to-day delivery of GBG’s Cyber Security Operations, reducing risk to GBG, our customers and stakeholders. This is an important role in GBG’s security strategy to be ‘Secure and Trusted’. A senior role it includes managing a global team of dedicated security analysts, working with an array of technologies and vendors to keep GBG and our stakeholders safe. The holder of the role will help shape overall cyber security strategy for GBG working as part of the security leadership team.

What you will do

• Operate and deliver a robust Cyber Security SOC (Security Operations Centre) capability by assessing and continually improving security system outputs and ensuring processes are developed and adhered.
• Process large volumes of alerts and manage suitable reaction to complex threats.
• Respond timely to security events and incidents as they inevitably occur 24/7.
• Optimise Security Orchestration and Response tooling.
• Threat hunting: Learn from experience and discoveries, prevent repetition through analysing historical data to predict future threats.
• Lead and manage the day-to-day activities of c6 analysts.
• Contribute to the development of business cases and presentations on new and emerging technologies of interest to enhance security operations.
• Lead in the development and maintenance of play books and incident response.
• Benchmark, analyse, report on, and make recommendations for the improvement and growth of security.
• Champion cyber security principles within the team and collaborate cross-functionally with analysts, engineers to achieve continuous improvement.
• Specialise in the running of SOC security systems and tools related to incident detection, threat detection and cyber hygiene.
• Support GBG’s Cyber Security Incident response capability
• Support the development of GBG’s vulnerability management programme of work.
• Support the SOC team in the deep dive analysis and investigation of incidents identified through alerts received.
• Establish operational foundations, defining metrics and KPIs to drive governance, quality, and efficiency.   Influence and improve existing processes through innovation and operational change.
• Lead on threat intelligence activities
• Manage staffing, including recruitment, supervision, scheduling, development, evaluation, and disciplinary actions.
• Develop and mentor staff through open communication, training and development opportunities, and performance management processes; build and maintain employee morale and motivation.
• Meet regulatory and compliance requirements.

Requirements

What are we looking for

• Subject matter expert with advanced knowledge of SOC operations (incident management, threat hunting and cyber hygiene).
• Crisis/Incident Management experience.
• Security Leadership and someone with a passion for security.
• Experience working with security testing tools & techniques.
• Security administration skills
• Analytical skills.
• Communication skills, ability to make complex incidents understandable and actionable.
• Production/development of technical & supporting documentation.
• Someone with the ability to remain calm under pressure.
• Experience in designing, implementing and measuring relevant security and technology management critical success factors, key performance indicators, and metrics
• Experience in managing relationships between vendors and internal customers.
• Relevant technical experience and qualifications e.g: Microsoft 365 Certified Security Administrator, Experience in the operation of SIEM & EPP tooling, In-depth knowledge of malware, IT forensics, EPP, SIEM, IDS & WAF, Penetration testing certification, Incident handling certification, Computer forensic certification, CISSP/CISM
• Experience working with tools like:  Imperva, CNAPP, EDR, Exabeam, Threat Intelligence, MCAS (Microsoft Cloud App Security)

Inclusion, diversity, and equality are fundamental to our business success at GBG. Our I&D programme, be/yourself, aims to support and promote an inclusive and diverse culture at GBG and encourage individuals to be their authentic selves at work.

Partnerships with organisations that are leading the way in diversity and inclusion, such as the Women in Tech forum, is a part of our commitment to drive real change and ensure we continue to learn, grow, and evolve as a business.