Cyber Security Team Leader
Job Description
Job title: Cyber Security Team Leader
Company: Addleshaw Goddard
Job description: Purpose of the Role
The primary responsibility of the Cyber Security Lead is to provide leadership in maintaining the integrity and availability of our clients’ data and provide an interface for cyber security throughout the IT Department. As a result, the Cyber Security Lead must have excellent leadership and analytical skills as well as a thorough knowledge of the company’s products, services, and Service Management processes. The Cyber Security Lead will use their advanced knowledge and technical expertise, coupled with their dedication to customer service, to maintain a secure infrastructure for the data of the company and its customers.
Specific Duties
- Responsible for the day-to-day management of the Cyber Security Team, g. defining and managing rotas to ensure the right level of resource, proactive quality review of team activities and adherence to defined processes and procedures
- Confidently deputise for the Cyber Security Manager when required/they are not available
- Create and manage the Security cloud migration process. Highlight any gaps from experience and work to remediate them
- Manage 1:1 performance meeting with the team
- Actively manage complaints and escalations and proactively act to identify and action issues before they become complaints/escalations
- Development, management and maintenance of the security of the Firm’s IT services, including liaising with third parties to ensure patching, resolving vulnerabilities and hardening systems as required
- Create and update security support documentation, including processes and procedures to ensure a consistent and effective support performance
- Work with all areas of the IT Department to ensure security of the infrastructure from the implementation of new systems through to the maintenance and monitoring of existing systems
- An ability to lead a team in an often demanding environment, give constructive feedback and work with the team to develop individual and team performance
- In and Out of Hours security response escalation point for any incident management
- Manage the Cyber Security Incident process/procedure, and the Cyber security Incident Response Team, leading war games and cyber security incident scenarios alongside the Cyber Security Manager to provide the IT department with the skills and knowledge of addressing any real cyber security incidents
- Manage post-cyber security incident forensic investigations and reporting, bringing in third party specialists if deemed necessary
- Keep up-to-date with the latest security threats, news principles, techniques and protocols. In particular, staying up-to-date with new security vulnerabilities and acting upon them out of hours if necessary.
- Keep up-to-date with the latest security news, principles, techniques and protocols
General Duties
- Operate in an ITIL V3 & ISO27001 focused service delivery framework
- Stakeholder Management
- Work to defined Service Level Agreements and Key Performance Indicators
- Other duties as assigned
Knowledge, skills and experience required
- A proven track record in leading/team leading a technical security team
- A demonstrated history of planning, development and implementation of Azure security related technologies
- An excellent understanding of infrastructure and application technologies: Server 2012+, ESX/VMware, Messaging (Exchange 2016+), IIS, SQL 2012+, Linux appliances, architecture and OS, Back-up technologies, Citrix, and Cisco networking
- An excellent understanding of security technologies: SIEM, firewalls, intrusion detection/prevention systems, anti-virus software, authentication systems, log management, content filtering, etc.
- An excellent understanding of security approaches: ISMS, risk analysis and assessments, the CIA triad, attack vectors including social engineering, cryptography, confidentiality issues and cyber security incident response best practices, including triage and chain of custody
- Proactively identifies areas for improvement, shares lessons learned with colleagues and encourages others to do the same, customer focused with a passion and drive to deliver customer satisfaction and value to the business
- Dedicated and responsible with a strong commitment to the assigned task with the ability to work under pressure, to meet deadlines and to work independently and/or with some supervision
- Self-driven and ability to work independently and interact effectively with people at all levels, with good communication and interpersonal skills
- Excellent problem solving and trouble shooting skills. In particular the ability to see patterns and solutions where others may not, attention to detail, analytical abilities and the ability to recognise trends in data
- Personal behaviours and values that nurture openness, honesty, trust, mutual respect and support from all team members in line with service excellence ideals
- The Cyber Security Lead should ideally have qualifications in some of the following: Security+, SSCP, CISP, CEH, CCNA, CCNA Security, OSCP, MCSE, a computing/security related BSc/MSc degree or other appropriate qualifications would be beneficial