Description
At FNZ, our purpose is to make wealth management more accessible, bringing easier, fairer and more inclusive solutions to people worldwide. Here in the Global Cyber & Information Security team, we work to protect the platforms that support investment solutions for over 20 million people.
We are looking for proven Cyber Security Incident Response and Operations Manager to join our team.
Reporting directly to the Head of Cyber Fusion Centre you will be responsible for manging security incidents and overseeing Security Operations Team to protect FNZ against cyber threat.
You will have demonstrable track record of building effective SOC teams and creating and leading cyber incident handling activities in a multinational organisation. You will have expertise in containing, responding and recovering from cyber incidents. You will be able to learn quickly and adopt to dynamic and complex global organisation.
Specific Role Responsibilities
1. Lead and supervise a team to enable prompt detection, investigation, and response to security incidents. Ensure the appropriate escalation procedures are followed when necessary and coordinate incident resolution efforts effectively.
2. Oversee the security operations day-to-day activities, ensuring timely response to alerts is achieved by the team.
3. Develop and maintain a training program for the team to ensure the team is capable to respond to the latest cyber threats and attack methods.
4. Collaborate with the SIEM and Threat Intel teams to effectively contribute to increasing security posture at the organisation.
5. Provide mentorship, guidance and positive recognition to security analysts and team leads.
6. Improve and maintain an incident response plan, lead periodic exercises to test the response readiness of the team, and continually enhance the incident response process.
7. Identify security risks and vulnerabilities through risk assessments and security audits.
8. Develop and implement risk mitigation strategies and controls.
9. Measure and report the maturity, effectiveness and efficiency of incident handling process
Experience required
Primary requirements
10. Demonstrable track record of leading cyber incident response efforts in multinational organisation
11. Experience of leading and mentoring a security operations team
12. In-depth knowledge of cyber threat landscape and the technics, tactics & procedures of advanced adversaries
13. In-depth knowledge of security technologies, tools, methodologies including SIEM, IDP/IPS, EDR
14. Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders
15. Ability to work under pressure in a fast-paced environment
16. Strong analytical and problem-solving skills, with a proactive approach to identifying and mitigating security risks
17. Understanding of regulatory requirements impacting security
18. Excellent spoken and written English
#LI-CM1