Overview:

The Security Operations Manager is responsible for the daily operations of Information Security systems, and the Security Operations Centre (SOC). SOC monitors the organisation’s Information and Cyber Security controls, with responsibility for the identification, analysis and response to security incidents.

Reporting to the Head of Information Security, and working closely with key stakeholders across the businesses, the role will ensure that the security operations are effectively meeting group-wide information security strategy, policy and control requirements. The role will be tasked to ensure that the organisation has effective cyber incident detection, response and recovery processes in place to meet the unique business objectives of a global exchange against the inherent security threat and risk profile applicable to national critical infrastructure.

Responsibilities:
– Manage day-to-day activities of the security operations team ensuring Service Level Agreements are met.
– Define, implement and manage a set of security operational services and processes that support business and technical requirements.
– Manage security tools and technology platforms, ensuring staff are skilled in the tools and working with stakeholders to manage the lifecycle and operating costs.
– Manage security change requests and tickets in line with the change management process across all production environments as appropriate.
– Oversee user recertification activities by business owners and platform teams.
– Ensure information security is embedded within change delivery, operational acceptance and business-as-usual operational activities.
– Execute threat hunting processes based on known Indicators of Compromise (IOC).
– Ensure security monitoring and alerting occurs across the IT estate for all relevant business processes and technical functions.
– Assist development of monitoring and operational standards to meet Information Security Policy.
– Oversee ongoing use case development for Security Incident and Event Monitoring.
– Development and management of processes, procedures, playbooks and technical documentation for the Security Operations Centre.
– Establish and manage an incident response service to contain, investigate, respond and prevent future breaches.
– Maintain awareness of security incidents and act as the primary control point during significant information security events. Convene an incident response team as required.
– Provide metrics and reporting to support governance forums such as Information Security Committee.
– Schedule regular Incident playbook drills to ensure an effective response to Security incidents, escalations and reporting.
– Ensure that the Security Operations Centre is able to evidence relevant audit, regulatory and compliance requirements.

Qualification:
– Experienced in managing a team consisting of both internal and external resources with diverse backgrounds.
– Must have extensive, progressive experience in the information security industry.
– Able to work independently and have a transformational mindset.
– Relevant information security experience working with or for global exchange, or similar financial services or market infrastructure provider.
– Beneficial to have information security experience working with critical national infrastructure or high security and availability environments.
– Demonstrate relevant recent experience with the operation and management of Information and Cyber Security systems (e.g. Anti-Virus, SIEM, Whitelisting, IOCs, Threat analysis, Vulnerability Management, Forensics and Investigations, Perimeter Security, Intrusion Detection and Prevention, Data Loss Protection)
– University degree in Computer Science, Information Management, or related field, or equivalent experience.
– Have relevant certification with information security and IT frameworks (e.g. CISSP, CISA, CISM, ITIL).

______________________________________________

Headquartered in Hong Kong, Pinpoint Asia is the go-to Specialist Firm for Technology Recruitment

We are a team of specialist tech recruiters (many of our recruiters come from an IT background) and we serve a wide range of clients, all the way from tech startups (especially FinTech) to some of the top Financial Institutions on Wall Street and several other large-scale enterprises in other industries.

Our significant market reputation and status as the leading search firm for many of our clients is a direct result of our strong industry relationships, intimate understanding of the marketplace and proven ability to deliver results. 

Our vision is to help companies hire smarter and help job seekers get closer to their career aspirations.

To see all our open jobs please reach out to us at https://pinpointasia.com/job-search/ (EA License # 65791)