Aztec Group Aztec Group is the bright alternative in fund and corporate services with dedicated client teams and a focus on alternative strategy asset classes.The IT Security Manager will oversee the organization's security and data infrastructure, with a focus on technical aspects to ensure robust protection of information systems. This role involves managing security operations, implementing security measures, and leveraging Microsoft Azure's security features to safeguard the organization's data and infrastructure.
Key Responsibilities:
Security Operations Management:
Be the Technical Expert to support and advance the objectives of IT Security and the wider group In conjunction with the leadership team, develop and implement security policies, procedures, and protocols Actively engaged in continuous monitoring and protection of networks, systems, and applications Technical Security Implementation:
Design, implement and support new and existing security solutions. (Privileged Access Management, Vulnerability Management, Threat Intelligence, etc) Expert in Microsoft Azure's security tools and services. (Entra, Privileged Identity Management, conditional access, Microsoft defender, Sentinel, etc) Perform security input and guidance on tools being adopted within the organisation. Oversee and assess the outputs of the vulnerability management platforms to effectively identify and mitigate vulnerabilities Ensure documentation of all solutions and designs are up to date, including technical design documents and associated policies, procedures and processes Azure Security Management:
Utilize Microsoft Azure's security features, including Azure Security Centre, Azure Sentinel, and Active Directory, Entra ID to enhance the organization's security posture Implement and manage identity and access management (IAM) solutions within Azure Monitor and respond to security alerts generated by Azure security tools Coordinate the incident response process, including investigation, containment, and remediation of security breaches Perform forensic analysis to determine the root cause of incidents and develop strategies to prevent recurrence Risk Management and Compliance:
Ensure compliance with recognised industry standards, such as SOC2, ISO 27001 and ISAE 3402 etc Assessment of Third-Party Risk Assessment responses and diligence requests for both clients and vendors Collaborate with internal and external auditors to support security audits and assessments and develop risk mitigation plans Collaboration and Communication:
Work closely with IT teams and other stakeholders to integrate and advise on suitable security controls for all systems, applications and projects Report security risks and strategies to senior management and non-technical stakeholders Work alongside vendors and partners to ensure the organization's security tools and practices are up-to-date and effective Engage with clients and vendors to ensure Aztec security controls are clearly understood Training and Awareness:
Develop and deliver security training and awareness programs for employees Stay current with the latest cybersecurity trends, threats, and best practices Skills, Knowledge, and Expertise:
Minimum of 5 years of experience in IT security, with a focus on technical cybersecurity roles Proven experience in implementing and managing security solutions Strong knowledge of Microsoft Azure security tools and services Proficiency in network security, system administration Experience with security monitoring tools, incident response, and forensic analysis Relevant certifications such as CISSP, CISM, Microsoft Certified: Azure Security Engineer Associate, or equivalent are preferred but not essential Excellent communication skills, both verbal and written Strong leadership and team management abilities Ability to carry a task to completion or engage more help to reach a conclusion Analytical and problem-solving skills #J-18808-Ljbffr