Service Owner, IT Security

The Service Owner for Security is responsible for the overall management and ownership of security-related IT services within the organization. This role plays a pivotal role in ensuring that security services meet the needs and expectations of their users, align with business objectives, and deliver value to the organization. The Service Owner defines the security service strategy, manages service design and delivery, and acts as the primary point of contact for all security service-related matters.

Cross-functional IT Teams, service desk, end users: Collaborate on security service design, development, delivery, and operations.

• Service Providers and Vendors: Collaborate for security service delivery and improvement.
• Industry Associations: Stay informed on security service trends and best practices.

• Develop and communicate a clear security service strategy, including objectives, scope, and goals.
• Align the security service strategy with the organization's business and IT objectives.

• Define the security service portfolio, including service offerings, service levels, and service catalog items.
• Collaborate with stakeholders to design and develop security services, ensuring they meet user needs and quality standards.

• Oversee the day-to-day delivery and operation of security services.
• Monitor security service performance, availability, and reliability, taking proactive measures to ensure continuous improvement.

• Act as the primary point of contact and accountable owner for security services.
• Define and manage security service-related policies, standards, and procedures.

• Ensure that security services comply with relevant industry regulations and internal policies.
• Manage security service risks and compliance requirements.

• Collaborate with internal and external stakeholders, including service providers and vendors.
• Gather and prioritize user feedback and requirements to enhance security services.

• Continuously identify opportunities for security service improvement and optimization.
• Drive security service enhancements based on feedback and performance analysis.

• Own the incident resolution for any security service issues, providing resolution or allocating it to relevant team members.

• Manage the budget and financial aspects of security services, including cost optimization and resource allocation.

• Percentage adherence to security service uptime and availability SLAs.
• Percentage adherence to SLAs for resolution of security incidents.
• NPS for security services from end users.

• Effectiveness in implementing initiatives to improve the quality of security services.

• Bachelor’s degree in Cybersecurity, Information Technology, or related field
• Certifications such as CISSP, CISM, CISA, ITIL, or equivalent are highly desirable

• 5-8 years of experience in IT security or service management roles.
• Proven track record of successfully managing and owning security services.
• Strong understanding of service management frameworks and best practices.