Security Operations and Cyber Manager

* Manage the key relationships with counterparts in Alfa's outsourced Security Operation Centers.* Develop and foster a culture of continuous improvement within the Security Operations Team.* Develop the cyber talent within the Security Operations Team.* Provide an integrated Managed Detection, and Response (MDR) capability for Alfa covering: + Alfa's Corporate Environment. + Alfa Cloud (industry leading single tenant SaaS solution for Alfa's clients, hosted using AWS infrastructure).* Leading for Alfa on any major Cyber Security Incident Response.* Explaining Alfa's Managed Detection, and Response (MDR) capability to auditors, clients, and prospects.* Identify and document requirements* Define the solution* Project manage the implementation* Define maintenance requirements including software and hardware updates* Define and implement monitoring, configuration management, integration and reporting requirements* Design and implement resilience and disaster recovery* Develop standard operating procedures* Document and hand over to business as usual.* Contribute to the development and maintenance of Alfa's documented Information Security Management System (ISMS) in the areas of. Security Operations and Cyber Security.* Lead the Security Operations team in providing answers and supporting collateral as part of client and prospect questionnaires and due diligence covering Cyber Security and Security Operations.* Contribute to audit fieldwork by providing walkthroughs of Security Operations and Cyber Security processes, documentation and controls.* Bachelors degree from a leading university.* Experience in enterprise security architecture and systems.* Proven knowledge of security standards, controls, processes and tools in a enterprise environment.* Extensive knowledge and experience of a lead role on a Security Operations Team providing Managed Detection and Response (MDR) services covering AWS infrastructure, at considerable scale, using native AWS Services such as: + CloudTrail. + CloudWatch. + Customer Incident Response Team (CIRT). + GuardDuty. + Security Hub + Security Incident Response. + VPC flow logs.* Good knowledge and use of at least one enterprise SIEM tool.* Good knowledge and practical application of Security monitoring techniques.* Some level of exposure to Cyber Incident Response, possibly in a previous role.* Knowledge of security industry technical frameworks and standards such as ISO 27001:2022, ISO 27002:2022, CIS 20, and guidelines produced by NIST and OWASP.* Capable of working independently on technical projects.* Minimum 7 years prior experience in Information Security and Cyber Security roles.* Minimum 5 years prior experience in working in a Security Operations Centre.* Minimum 2 years prior experience of a lead role, or manager role within a Security Operations Centre.* Support you in flexible hybrid working* 25 days’ annual leave plus bank holidays and flexible cultural days* Pension contribution match up to 6%* Provide private health insurance and access to private GP* Support you with enhanced maternity, paternity and adoption leave with family-friendly policies* Provide Income protection* Provide Life, disability and worldwide travel insurance* Offer interest free loans of up to £10,000 after probation period* Offer Gympass given access to a range of health and wellbeing gyms, classes and apps* Support you in pursuing membership of professional bodies* Offer 5 days per year to attend training* Offer 3 paid days of volunteering per year