Group Information Security

doValue Group is looking for a Security Operations Center manager (SOC manager) who will be part of the Group’s Information Security Office, leading and overseeing the Group’s security operations team.

This person will be responsible for managing the daily operations of the SOC, ensuring the continuous monitoring, detection and response to cybersecurity threats. The SOC manager will also be responsible for participating in new projects, defining information security requirements for the new products and services of the company and will work closely with the other IT functions to ensure the Group’s IT landscape is properly secured and aligned with the market’s best practices and standards. In summary, the SOC manager will play a key role in managing security incidents, implementing an effective cyberthreats monitoring, defining security requirements for new developments or product acquisitions, and ensuring the IT architecture is aligned with the best practices so the Group’s security posture remains strong.

We have a highly motivated and talented team with a strong experience and technical background. This is a profile position requiring interaction with all management levels across the organization.

If you are a cybersecurity professional with wide expertise in the field and you want to be part of a high-caliber team, this is the right place to be!

Key Accountabilities :

Efficiently manage the implementation, maintenance and continuous improvement of the security tools within their responsibility : SIEM, WAF, NAC. Oversee the detection, investigation and resolution of security incidents, ensuring a timely and effective response. Periodically assess the SIEM configurations and coverage to ensure an effective cybersecurity monitoring, detecting potential gaps or improvement areas and proposing action plans to enhance the monitoring. Evaluate and recommend new security technologies to enhance detection and response capabilities. Periodically evaluate the SOC performance, fostering the continuous improvement of the area. Analyse the reports from the threat intelligence feeds to identify emerging threats, vulnerabilities and sources to enhance the SOC monitoring capabilities. Define, implement, monitor and report periodic KPIs and metrics on SOC performance, incident response and security posture to identify trends and possible deviations. Lead incident response efforts, working closely with other IT functions to properly evaluate, resolve and mitigate risks. Ensure compliance with internal and external incident response procedures and requirements and standards. Plan, define and oversee the execution of different incident response tests, such as red team or blue team exercises. Participate in new projects, defining and / or evaluating information security requirements for the new products and services of the company. Evaluate and properly report potential budget needs for implementing security measures for new projects. Participate in projects and initiatives from other IT functions, evaluating the IT configurations and implementations, granting they are always aligned with the security best practises and hardening policies. Evaluate the technical implementation proposed by users and IT teams (FW rules, VPN configuration, WAF configurations, etc) to ensure they are aligned with the security best practices. Oversee the technical audits executed on the different security and IT tools, evaluate the results, propose and oversee the implementation of fixing and improvement actions. Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan. In-depth understanding of IT general controls (Disaster Recovery Plan, access management, data centers access, etc). In-depth understanding of IT Governance principles, risk management and control issues related to IT. Ensures all information system security-related documentation is current and accessible to properly authorized individuals. Research, identify, and analyze possible information security risks and vulnerabilities with the potential for significant impact on the company. Utilization of penetration testing to assure the continued strength of security to outside forces. Prioritize and complete multiple complex projects and initiatives under tight deadlines. Ensure that suppliers of external information systems, system components or services use security practices in compliance with applicable laws and defined IT security standards. Interface with local business areas, clients and report security information and indicators to clients and top management.

Professional Requirements and Skills :

Proven experience of, at least, 5 years in similar positions, preferably in international Groups. Specific experience in the financial sector will be valuable. BSc / BA or MSc in Computer Science, Engineering, or relevant field. Experience of the following is required : SIEM, IOCs Advanced security MySQL DB administration skills, WEB Application and Firewall monitoring. preferred Certifications : CISSP, CISM or equivalent security certification. Analytical mind with a problem-solving aptitude. Project management skills. Leadership and communication skills. Effective management of disruptive events and security incidents. Ability to work in a multinational environment, managing stakeholders from different countries. Ability to create cooperative and proactive working environments with collages and third parties. Ability to work and act under pressure, effectively managing crisis. Strong problem solving skills. Excellent command of the English language. Military obligations fulfilled (for men).

Our Values define us and make us stand out! Collaboration :

We take on shared responsibilities Leadership :

We act as role models and empower colleagues and collaborators Effectiveness :

We act with determination and proactivity Responsibility :

We build trust and credibility with our customers

What you will find with us :

Take your career to the next level working with amazing teams! We are offering : Αn attractive remuneration package and benefits A dynamic professional working environment with excellent potential to grow and develop International business exposure and stretching project assignments We want to be able to attract the best of the best, and make sure they keep getting better and do amazing things! Do you feel that we are a good fit? If, so, apply to this job opportunity!