Head of Cyber Security Operations

This senior role will involve you in strategic decision-making, system implementations, and the adoption and testing of new processes and procedures which improve the security and robustness of QA’s organisational infrastructure and associated IT systems.

As a Head of Cyber Security Operations you will be responsible for safeguarding QA from intrusion, security threats, security weaknesses, software bugs and exploits. You will be responsible for direct and virtual teams involved in keeping QA secure.

Role Responsibilities:

• Management of the Security Operations Centre service, ensuring resources are aligned to monitor and protect QA IT assets including 24/7 out of hours on call coverage.
• Responsible for security event monitoring, incident response and cyber/threat intelligence across QA.
• To respond rapidly and effectively to any IT security incidents, co-ordinating and managing them through to a successful conclusion.
• Ensure that the monitoring, logging, and prevention toolsets are aligned to the needs of the security function/the business and are delivering best value.
• Management of direct and virtual security related IT teams for the delivery of the security operations service and security related projects.
• Work proactively to understand the threat landscape, how it could impact QA and introduce protective measures to reduce the business risk of a cyber-attack or internal threat.
• Creation and execution of operational security related strategies to enhance the security of IT systems both on-prem and cloud.
• Creation of reports, dashboards, metrics for SOC operations and presentation to senior management.
• Oversight, planning and execution of vulnerability assessments, penetration tests, audits or related security assessment exercises (eg Red Team) to improve the security posture of the infrastructure, applications and services.
• Manage the remediation of identified vulnerabilities through to successful conclusion and to make recommendations to control any identified risks and to ensure they are implemented.

Your Experience/Skills:

• Experience working at a senior level within an information security, cyber security environment or Security Operations Centre.
• Strong technical background with excellent knowledge of cyber security, computer networks and operating systems including firewalls, IDS/IPS, Active Directory, endpoint protection, Windows Server, networks and cloud services
• Comprehensive knowledge or experience of information security principles, including risk assessment, intrusion detection, Security Incident and Event Management (SIEM) tools, threat and vulnerability management
• Detailed knowledge or experience of application or network based penetration testing tools and methodologies
• Experience of incident response and/or security incident event management solutions, SOAR, UEBA

About QA

At QA, we believe the future belongs to organisations that are able to learn, master and apply new skills at pace and scale. As the largest tech training company in the UK and the fastest-growing in the US, we partner with 96% of the FTSE and most of the Fortune 500. We have served over 4,000 customers and 1+ million learners since 1985.

We believe skills alone aren’t enough but need to be applied back to the business in order to effect change. We do this through tailored learning programmes that connect learning across an organisation’s siloes, create continuity for learners, and feature collaborative, cohort-based modalities to apply skills at pace and at scale. Our unique end-to-end learning solution draws from deep expertise across apprenticeships and instructor-led training,and self-paced learning.

Please find out more about us at https://www.qa.com/about/careers/

West Yorkshire, Yorkshire, Leeds (Brewery Wharf)