Salary: £45,000 - 45,000 per year Requirements: Proven experience in a security leadership or senior security operations role ideally within an MSP or high-variability environment. Demonstrable success delivering real-world security improvements, not just writing policies. Strong background in incident response and security operations. Ability to design, articulate, and deliver actionable security roadmaps. Comfortable interacting with senior client stakeholders and influencing decisions. Strong hands-on Microsoft 365/Azure AD security experience. Understanding SOC processes, alert triage, and incident escalation. Solid grasp of vulnerability management (tools, triage, prioritisation, remediation). Familiarity with ISO 27001, NIST CSF, GDPR, Cyber Essentials Plus. Ability to translate technical risk into business-impact language. Strong documentation, reporting, and communication skills. Experience implementing technical controls that materially reduce risk. Responsibilities: Own client cyber security roadmaps: creation, prioritisation, scheduled review, and delivery. Lead and continually improve our incident response function including triage, containment, communications, and lessons learned. Drive remediation by working closely with Service Desk, Projects, and clients. Maintain robust security reporting and ensure clients understand their risk position. Oversee compliance efforts (ISO 27001, NIST, GDPR) and ensure gaps are addressed. Provide guidance on governance, policies, and technical best practice. Ensure SOC activities are efficient, actioned, and measurable. Act as the escalation point for all complex cyber queries internally. Work with leadership to shape the long-term vision of our cyber offering. Build, update, and deliver client cyber security roadmaps ensuring agreed actions are completed. Run regular risk and vulnerability reviews, prioritising remediation and driving work into the Service Desk/Projects teams. Lead incident handling end-to-end: triage, investigation, containment, communication, documentation, and lessons learned. Monitor and improve Microsoft 365 security posture across clients. Manage SOC output and ensure alerts are assessed, escalated, and addressed. Own patching, vulnerability reporting, and remediation follow-through. Conduct technical control checks (email security, endpoint protection, MFA/SSPR, logging, backups, etc.). Attend client and internal security meetings, clearly communicating risks, progress, and next steps. Maintain our security documentation, processes, and SLAs. Assist engineers during major incidents or escalations. Lead post-incident reviews and convert them into long-term improvements. Build practical, usable processes and playbooks that work in a fast-moving MSP environment. Proactively identify areas where Total IT can improve our security resilience and service quality. Support presales for security related work and advise on solution design. Lead and manage a team of Security analysts. Technologies: Azure Support Microsoft 365 Security Office 365 Cloud Firewall More: At Total IT, we are an award-winning technology services and systems integration business founded in 2006, with offices in Bedford, London, and Dubai. We support some of the largest and most complex commercial buildings in the UK, and our growing portfolio of international clients reflects our commitment to exceptional client service and a people-first culture. As a Cyber Security Manager, youll own the delivery of cyber security strategies and execution, ensuring our clients security needs are met while driving our internal processes to maturity. We offer competitive benefits, including 28 days of annual leave, comprehensive private healthcare, and opportunities for professional development. last updated 16 week of 2026