IT Security Operations Manager

South Western Railway (SWR) operates over 1,500 services each weekday across the network and employs more than 5,000 people. We provide easy and convenient mobility, connecting people and communities in South West London, southern counties of England, and the Isle of Wight.

• The function of this role is to coordinate the various IT Security workstreams to ensure standards set and consistently monitored and reported.
• The workstreams include ensuring the capture and reporting of vulnerabilities and risk. Communication and education of the IT and wider business team, ensuring the management and maintenance of documentation that support security compliance and oversee the management and monitoring of IT Supply chain security.
  • Maintain oversight of vulnerability management processes and mechanisms, monitoring KPIs, understanding key issues, engaging with the business to progress.
  • Ensuring that mechanisms are in place and managed, that demonstrate engagement with the IT user community on Cyber Security awareness and education.
  • Documentation is key to setting the framework of standards and defining policy around Cyber Security, the requirement is to ensure the documentation is maintained and appropriately available to support the SWR IT Security posture.
  • Ensuring that appropriate IT Supply Security chain mechanism is in place and maintained to protect SWR as far as possible against issue of supply chain compromise.
• Working with the wider business to maintain a dialogue and engage on issues of Cyber Security with particular focus on functions and departments that technically utilise the IT environment to deliver their services.
• To co-ordinate the IT Security reporting of internal KPIs for the IT team and develop and maintain business process and reporting mechanisms to ensure they remain relevant to the ever changing cyber security environment.
• Support the process of reporting risk around Cyber Security issues.
• To support projects and change within the team and in the wider business that are aiming to improve the overall Cyber Security posture.
• To actively represent SWR IT Security in meetings both internal and external to maintain or preferably improve the overall IT Security posture.
• To manage the procurement and contractual renewal processes for IT Security systems and services.

• Oversee the maintenance of the business process and reporting mechanisms for the IT Security function, ensure these are aligned with the business reporting requirements.
• Monitor that the Vulnerability management tools deployed by the business are suitably maintained and updated to be able to provide accurate reporting and KPIs.
• Support the process and mechanism for Education and awareness around Cyber Security issues, ensure there is a regular flow of updates and ensure the content remains current and relevant.
• Oversee that the documentation supporting the Cyber Security activities of the business remain current and complete.
• Manage the processes that will deliver a credible and auditable IT Security Supply chain management process to mitigate the risk of supply chain compromise.
• Actively working with the wider business helping the understanding of issues and providing guidance.
• Supporting the process of reporting and managing risk around IT Security issues.
• As required to support projects with an IT Security elements.
• Support Audit and Compliance processes for IT Security activity.
• Support the IT function contributing to the delivery of organisational objectives.

• Ability to demonstrate the ability to undertake the above responsibilities
• A passion for sharing understanding around technology
• Experience of managing 3rd parties and 3rd party delivered services
• Excellent written and verbal communication skills
• Willingness to support and mentor junior staff
• Excellent customer facing/customer service skills
• Able to work under pressure and meet deadlines
• Able to demonstrate a high degree of flexibility including shift and out of hours working
• Excellent organisational skills
• Able to manage sensitive and sometimes confidential information
• Self-motivation and able to take responsibility
• Able to manage and prioritise and tasks and time efficiently
• Able to demonstrate initiative and a proactive approach to daily tasks

You will work an average of 37 hours per week across 5 days.

Typically, Monday to Friday, office hours.

In return we offer a competitive salary and a variety of valuable benefits, including:

• Free duty and leisure travel on SWR services for employees
• Free leisure travel for spouse/partner and dependants (criteria dependent)
• 75% discount on many other train operating companies
• Full training and support with development
• Excellent pension scheme

We all belong at SWR. Our vision is to provide an inclusive environment for all colleagues, ensuring all candidates have an equal opportunity to access meaningful employment.

We value our differences such as age, gender, LGBTQIA+, ethnicity, religion, and disability. We maintain a zero tolerance towards any form of prejudice towards our colleagues, customers, and future talent.

We celebrate and encourage diversity of thought, progressive ways of working and seeing all our colleagues grow and thrive.

If you require additional support to complete your application due to a disability or neurodivergent condition, for example, dyslexia, dyspraxia, or autism, please follow the links below. We encourage you to share any additional needs you may require so we can provide a fair and equal process for all who apply.

https://exceptionalindividuals.com/neurodiversity/

https://www.healthassured.org/blog/neurodiversity/