IT Security Operations Manager
IT Security Operations Manager
UTRECHT, THE NETHERLANDS
Job Description:
As an IT Security Operations Manager, you are part of Group IT Security. Your main responsibility, with your team of 6-7 colleagues, is supporting Group IT Security with activities related to Security Operations for all Europe IT Operating companies and Governance, Risk and Compliance for the Benelux organizations.
In this role, you will manage the quality of the security operations process; your team is responsible for the delivery of security operations for systems (whether based on premise or hosted by third party cloud solution providers) in line with the requirements identified by Group IT Security and GIT Infrastructure Teams. Furthermore, you are occupied with the development, improvement, planning and execution of compliance testing, controls assessment and documentation.
As an IT Security Operations Manager, you will lead a team of three people (and additional consultants) and you will report to the Senior Cyber Security Operations Manager. You have much contact with other European colleagues, by the use of video/online conferencing and sometimes you are going to travel in order to meet in person.
Key Responsibilities:
- You will make sure action plans for ensuring the safety and security of all information systems assets are executed and you will manage the strategic objectives and direction for all Cyber Security as being Group IT services (for example the incident response process);
- You will be involved in risk assessments, manage and assess information security risks for Group and high-risk projects such as conducting (third party) risk assessments and Information Security audits based on ISF framework;
- You will lead investigations on security incidents to minimize the risks of these incidents to an acceptable level. In case incidents have occurred, you will conduct advanced analysis, recommend remediation steps and support with implementing and testing of these remediation plans;
- You have an advisory role: to the Head of IT Security on information security issues and regarding to the design and implementation of IT security solutions based on the business’ needs regarding information security;
- You will supervise the three Business Unit Information Security Managers and additional consultants to ensure information security control implementation and execution within local Business Units;
- You will provide guidance to the Group and BU’s by developing, maintaining and publishing up-to-date security procedures, standards and guidelines;
- Plan, research and specify robust security architectures for IT Infrastructure and IT projects.
- You will be occupied with Governance, Risk and Compliance for Benelux BU’s.
Required Qualification:
- You bring a minimum of five years of working experience in IT and information security;
- You are an expert on cyber security technologies, IT Infrastructure and IT standards (ITIL, network technology, storage, databases, various operating systems as Windows/UNIX), and web technologies (focusing on network security). Furthermore, you have deep experience regarding risk assessment procedures, technologies and Cyber security attacks and threads;
- You bring Information Security Certifications in one or more of the following, CISSP, CISM, CISA, CEH or equivalent industry certifications.
- You have strong experience with standards in information security, such as ISF or ISO 2700x and you are able to read and understand packet level data Intrusion detection and prevention and Network Security Products (IDS/IPS, firewalls, etc.) Host Security Products (HIPS, AV, scanners, etc.).
- You are able to build relationships based on your interpersonal skills and you like to work across the organization at all levels and geographical locations of our Business Units.
- You have well developed communication skills, since you are working a lot with your direct reports and senior management as well as other (external) stakeholders. You are fluent in English and preferably Dutch as well (verbal & written).
