Director, Cybersecurity Operations Manager

Job information:

• Functional title - Director, Information Cyber Security (SOC)
• Department - IT Security
• Corporate level - Director
• Report to - Executive Director, Information Cyber Security
• Location - London, Canary Wharf. Onsite 2 days per week.

What you will be doing:

• The regional lead for our Cybersecurity Operations team will lead, develop, and align the UK security operations team in line with the global SecOps function, evolving cyber threat landscape, and the risks posed to delivering our FX settlement services to the market.
• Lead the Firm's Cyber Incident Response capabilities and guide the development/ enhancement of all applicable cybersecurity controls during hours where region has primacy.
• Lead the Firm's Information Security Incident Response program when region has primacy and contribute to the development/ enhancement of applicable data loss prevention (DLP) and User and Entity Behavior Analytic (UEBA) rules and policies.
• Accountable for the Firm's Purple Team program integrating offensive cyber activities with cyber control enhancements to improve our overall security posture.
• Support the organization's Vulnerability Management program, ensuring vulnerabilities are managed within standards to improve our cyber resilience posture.
• Responsible for training and certification of CLS Security Operations personnel and supporting consultants.
• Provide regional oversight and leadership to activities that enable a 24/7 follow the sun operations model.

• Leads by Example: Demonstrates the technical and professional skills expected across the global team through personal action.
• Accountable and effective communicator: Clearly takes charge of the duties outlined above and communicates well with stakeholders so teams can operate in unison where required.
• Innovator and Change Agent: Always striving to find ways to automate existing processes, streamline and simplify complexity, and incorporate new ideas and capabilities to enhance our security posture and make the team stronger and better.
• Decisive: provides clear direction during cyber incident response to the Security Operations team and all associated stakeholders.
• Identify risks: Able to synthesize capability gaps and articulate them so the Firm can manage risk in alignment with its risk management strategy.
• Manages ambiguity: operating effectively and decisively, even when things are not certain, or the way forward is unclear.
• Collaborates: building partnerships and working collaboratively with others to meet shared objectives.
• Influence: proven success navigating and operating effectively in a matrix organization.
• Customer focus: building strong partnerships and delivering customer-centric solutions.
• Committed to professional development with a personal appetite to grow and contribute further to the organization over time.

What we're looking for:

• Bachelor's degree in Cybersecurity, Information Technology, intelligence or a related field (Master's degree preferred)
• 8+ years' experience in cybersecurity / SOC positions, ideally within other entities within the CLS ecosystem of financial institutions, central banks, regulators and other FMIs.
• 4+ years in cybersecurity/ SOC leadership positions.
• Comprehensive hands-on experience with SIEM/ SOAR platforms, cloud security principles, endpoint security tools, malware analysis and digital forensics and incident response.
• CISSP, CISM, GIAC, or CEH are highly desirable.
• A proven technologist with strong technical and cyber understanding, appreciation of modern systems architecture and associated security requirements.
• Detailed understanding of managing and providing oversight of critical vendors and the services they deliver.
• Exemplary reputation as a respected and trusted executive leader in cybersecurity.