Security (Information & Communication Technology)
Full time
Position Overview The Security Manager will play a pivotal role in leading our security team to enhance both our market-facing security services and internal cybersecurity posture. This role will oversee our Managed Security Services, Cyber Security Professional Services and work closely with the internal Corporate Service Team to integrate risk management principles. The Security Manager will also collaborate with product managers to develop a go-to-market strategy for our contemporary security offerings.
Key Responsibilities: Security Team Leadership & Internal Security Compliance Lead, mentor, and manage a team of cybersecurity professionals, fostering a culture of growth and accountability. Oversee the development and implementation of internal cybersecurity measures, ensuring compliance with industry frameworks and maturing our security posture. Conduct periodic reviews and audits to ensure continued compliance and identify areas for improvement in our internal security processes. Security as a Service (SecaaS) Operations & Interim Service Delivery Manager Oversee our Managed Security Services, delivering continuous monitoring, threat detection, and rapid response for clients. Serve as interim SDM for SecaaS, ensuring service delivery excellence and client satisfaction until the function scales. Collaborate with cross-functional teams, including the Corporate Service Team, to ensure risk management alignment and ongoing process refinement. Strategic Market Development and Product Collaboration Work with product managers and exec team to develop a go-to-market strategy and strengthen our value proposition, keeping our offerings competitive and aligned with market needs. Identify opportunities for new or enhanced security services based on industry trends, client feedback, and emerging threats. Client Engagement and Advisory Serve as a trusted advisor to clients, understanding their security needs and tailoring our solutions to support their business goals. Conduct and oversee cybersecurity assessments, leveraging frameworks like Essential Eight, CIS, and NIST to inform client maturity roadmaps. Provide clear, actionable recommendations for security hardening, risk mitigation, and continuous improvement. Operational Excellence and Continuous Improvement Ensure all security operations adhere to best practices and regulatory standards, continuously improving our service quality. Drive innovation within the team by staying informed on emerging threats, security technologies, and industry trends. Key Performance Indicators (KPIs): Internal Security Maturity and Hardening Achieve quarterly improvement in internal security posture based on maturity assessments. Maintain agreed Microsoft Secure Score. Ensure 95%+ of critical and high vulnerabilities are remediated within agreed SLAs. Customer Satisfaction & Service Delivery Maintain an average customer satisfaction score of 90%+ for Managed Security Services clients. Achieve 98%+ SLA adherence for incident response times and service quality. Security Incident Management Achieve MTTD Resolve 99%+ of security incidents without escalation. Conduct post-incident reviews for all significant security incidents with actionable improvements. Growth of SecaaS and Client Base Maintain a 95%+ retention rate for SecaaS clients. Team Development and Growth Achieve a 90%+ retention rate within the security team. Ensure 100% completion of required training and certifications. Product Development and Go-to-Market Success Launch at least one new or enhance agreed security service annually. Compliance and Regulatory Standards Pass 100% of internal and external audits. Review and update all security policies at least annually. Qualifications: Bachelor's degree in Cybersecurity, Information Technology, or related field (or equivalent experience). 5+ years of experience in cybersecurity, with at least 2 years in a management or team lead role. Expertise in Microsoft Defender XDR, Microsoft Sentinel, and managed security service delivery. Strong understanding of cybersecurity frameworks (Essential Eight, CIS, NIST) and experience conducting security assessments. Excellent communication and interpersonal skills, with the ability to build strong client relationships and collaborate with cross-functional teams. Preferred Skills Relevant certifications such as CISSP, CISM, or equivalent. Experience in product development and go-to-market strategy within a security or IT service environment. Proficiency in Azure security and other Microsoft security technologies. Previous experience in managing Security Operations and Managed Security Services. What We Offer: Competitive salary and benefits package. Opportunity to work with a dynamic and innovative team. Professional development and growth opportunities. Engaging and collaborative work environment. Support from our strategic partnerships with tier-one technology vendor partners. #J-18808-Ljbffr