Security Operations Centre Manager

Job Description

Join our dynamic team as a Security Operations Manager, where you'll lead and enhance our security strategies to protect critical assets and ensure operational resilience.

Privately owned and independently minded, Creditsafe operates with the singular vision of powering business decisions. We do this by delivering valuable intelligence on customers, suppliers, and potential buyers to corporates, public sector organizations, and SMEs globally.

Our journey began in 1997 in Oslo, Norway, with a revolutionary dream to make business information accessible to all. Twenty-five years later, we’ve realized this dream, changed the market for the better, made data intelligence accessible to all businesses big and small, and most importantly, opened up new avenues of data intelligence through machine learning, AI, and connected data.

From risk management to opportunity identification, our industry-leading solutions power decisions for companies by turning their data into actionable insights that help them become stronger, grow faster, and thrive.

Creditsafe’s Information Security and Compliance team are motivated by protecting company reputation, safeguarding existing revenue, and supporting future revenue. We understand that security can often be misunderstood, so our approach is to enable new and existing customers to interact securely with our products and services. We pride ourselves on balancing a positive security culture with a robust control environment. Our responsibilities include setting security policies, educating users on good security practices, managing security risks, and auditing our security posture. We collaborate with various teams internally and externally and aim to be as helpful and supportive as possible. Outside of security, we’re passionate about sport, music, coffee, dogs, and memes.

As a Security Operations Manager, you will lead our Security Operations Centre, Application Security, and Security Engineering teams. The successful candidate will play a crucial role in improving organizational maturity in line with our existing ISO27001 and ISO22301 certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies to protect critical assets and ensure operational resilience.

1. Manage the day-to-day activities of the Security Operations Centre (SOC) and Security Engineering teams.
2. Produce reports on key security metrics across Security Operations, Application Security, and Vulnerability Management.
3. Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans for team members.
4. Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO27001 standards.
5. Participate in Steering groups for Access Management and Data Protection.
6. Set and align team objectives and tasks to achieve the overall Information Security and Compliance strategy and goals.
7. Participate in Quarterly Business Reviews with security tooling vendors, providing feedback on product features, requests, SLAs, and reporting requirements.
8. Coordinate with different teams to maintain and improve the organization’s information security posture.
9. Conduct regular Technical Readiness Reviews and risk assessments to identify vulnerabilities, assess risks, and implement corrective actions in planned changes to applications, environments, and configurations.
10. Support the Request For Information process by providing technical responses to customer inquiries.
11. Provide leadership and technical guidance to security team members.
12. Manage and oversee security incident investigations alongside the Security Incident specialist, protecting IT assets including intellectual property, regulated data, and company reputation.
13. Monitor and analyze security alerts, distributing them to appropriate teams for resolution.
14. Report on key performance indicators and security trends relevant to the company.

The responsibilities above are not exhaustive and additional duties may be assigned as deemed appropriate by the line manager.

SKILLS AND QUALIFICATIONS
Essential Qualifications and Experience:

• Professional security management certification such as CISSP, CISM, CISA, or similar.
• Proven experience managing security operations teams in a similar industry.
• Familiarity with SOC2, PCI-DSS, ISO22301, and ISO27001 standards.

• Bachelor’s or master’s degree in CyberSecurity, Computer Science, Information Technology, or related fields.
• Cloud security certifications such as ISC2 CCSP, CSA CCSK, AWS Security Specialty.
• ISO27001 Lead Implementor certification.
• Strong knowledge of cloud and on-premises security environments, including physical security solutions.
• Knowledge of UK and European financial industry regulations.
• Excellent leadership and team management skills.
• Strong problem-solving abilities, especially in emergency situations.
• Excellent communication skills, capable of explaining complex security issues to non-technical stakeholders.

• Competitive Salary
• Company Laptop
• Bonus Scheme
• 25 Days Annual Leave plus bank holidays
• Hybrid working model
• Healthcare & Pension
• Cycle to work and Wellbeing Programmes
• Global company gatherings and events
• Opportunities for e-learning and career progression

For more details, visit our benefits page: https://careers.creditsafe.com/gb.

Creditsafe is an equal opportunities employer. Please contact us if you need support with your application.