Cybersecurity Manager: Security Operations

JOBNUMBER

**iOCO03532**
- CONTRACT TYPE

**Permanent**
- CONTRACT TYPE:
**Hybrid**

**The Role**:
Our Client is on a mission to maintain and develop a high-performing cybersecurity function in support of a complex business undergoing digital transformation. They are looking for a **Cybersecurity Manager: Security Operations** take responsibility for cybersecurity operations, specifically purple teaming, across South Africa. The objective is to continue building and enhancing the function with a strong focus on people development while leveraging modern technology solutions and specialist third parties to continually improve security posture through threat detection, response and continual control validation.

**Skills and Experience**:
**What you’ll do**:
**People**
- Enhancing cyber intellectual capital: Leadership and management of the cybersecurity SOC/purple team covering talent development and performance management.
- Building culture and teaming: Management of internal partnerships for execution, including context setting, skills transfer, and up-skilling.
- Management of key external security partner and service relationships (e.g. MSSP).

**Process**
- Take responsibility for cybersecurity operations covering offence and defence: threat detection, incident response operations, threat hunting, and red teaming.
- Enhance SOC capabilities through continual improvement of quality, visibility, coverage and effectiveness.
- Work with other cybersecurity team leaders, the CISO, and other key stakeholders, to define and drive a threat-informed and risk-based cyber security strategy.
- Contribute to the ongoing improvement of cyber security operations, processes and ways of working.
- Enhance purple teaming processes with the philosophy of continual threat identification and continual control improvement and validation.
- Translate strategic security operational requirements into practical solutions and drive implementation.
- Leverage modern technology and AI capabilities to enhance operations.
- Contribute to the ongoing maintenance and enhancement of Cyber and Information Security Policies, Standards, Procedures and Guidelines.
- Remain aware of global security industry trends and influence the strategy accordingly.
- Define and maintain SOC playbooks.
- Manage forecasts and budgets.

**Customer**
- Understand Cyber, IT and Business strategies and contribute to the creation and delivery of the annual cybersecurity roadmap and execution with a specific focus on purple teaming.
- Plan and prioritize projects and workload to deliver to the roadmap.
- Provide updates, context and feedback to relevant stakeholders.

**Your expertise**:

- 12+ years relevant experience in the cyber and information security discipline.
- 5+ years’ experience in people leadership.
- Demonstrable experience in leading a specialised cybersecurity team within a large environment.
- Experience with security operations tools, frameworks, practices, and processes.
- Resiliency, determination, and pragmatism.
- May be required to assist outside of working hours.
- **Additional Criteria**
- Experience in both red and blue teaming is advantageous, specifically response operations.
- Experience in building and maturing SOC capabilities, including automation.
- Practical experience with adversarial frameworks such as MITRE ATT&CK.
- Working knowledge of PCI-DSS.

**Qualifications required**:

- 3-year IT qualification.
- Post-graduate degree, industry certifications and community/lab involvement are advantageous.

**Other**:
**Key Competencies**
- Makes sound technical decisions based on understanding of what is commercially achievable within technological constraints.
- Evaluates the applicability of solutions with the ability to challenge and qualify its suitability for the business.
- Leverages research on technology-related concepts, trends and best practices to provide guidance on IT roadmap.
- Set technical policies and procedures to support IT stability and success aligned to evolving technologies and methodologies.
- Responsive to external influences (positive or negative) on the organisation.
- Understands what is commercially achievable and makes sound business decisions.
- Supports the development of business acumen of team through knowledge sharing and upskilling.
- Maintains advanced knowledge of business operations and organisational metrics and trends.
- Effectively applies substantial in-depth analysis in order to determine and meet requirements.
- Quickly identifies key issues, stakeholders and viewpoints in a complex situation or problem.
- Finds ways to condense large amounts of information into a useful form.
- Anticipates the consequences of situations and proactively works to overcome potential obstacles.
- Asks perceptive, probing questions to get to the heart of the matter.
- Plans and ensures implementation of activities/projects identified in business strategy.
- Maintains a keen awareness of the interrelationshi