Senior Information Security Operations Manager

Hybrid - WFH/Manchester, United Kingdom

Applications have closed

AJ Bell

AJ Bell is a low cost, award-winning platform for the DIY investor. Learn more about our SIPP, ISA, junior ISA and Dealing account.

View all jobs at AJ Bell

Job Description

To support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell’s systems and services.  Key to this is maintaining the confidentiality, integrity and availability of the data that resides upon those systems.

This role will be responsible for the leadership and management of the team delivering ongoing operational analysis, management and response to security threats targeting AJ Bell systems and information.

The team is based in Manchester and works hybrid. This role can be based UK wide with the expectation to be in the Manchester office intermittently. 

The key responsibilities of the role are:

  • Setting the approach to business-as-usual security operations delivery
  • Ensuring the effective monitoring and responding of alerts and events, with appropriate prioritisation based on impact and urgency.
  • Responsible for handling colleague queries relating to information security and acting as point of escalation for service delivery teams
  • Ensuring the effective delivery of Identity Access Management activity.
  • Supporting the assessment, planning and co-ordination of patch management activities for internal systems and hardware
  • Overseeing vulnerability scanning process to confirm the effectiveness of patching.
  • Deliver internal investigations capability following forensic best practices.
  • Supporting the administration of email and web gateways
  • Identifying and monitoring external information sources to make recommendations on latest security threats and vulnerabilities that affect our technical estate.
  • Responsible for the analysis and dissemination of threat intelligence data to key internal stakeholders.
  • Ensuring the timely delivery of monthly metrics and key performance indicators.
  • Incident response first responder and on-call support.
  • Data Loss Prevention monitoring and alerting.
  • Review and monitor the effectiveness of ongoing security awareness training.

Technical Skills:

  • Solid understanding and knowledge of Information Security risk management tools and techniques
  • Experience of Information Security standards and frameworks
  • Awareness and understanding of the Information Security threat landscape
  • Experience of utilising and monitoring Information Security solutions e.g. email / web gateways, SIEM, Endpoint protection etc.
  • Awareness of Cloud security solutions and standards.
  • Hands on experience of managing and configuring systems including Microsoft Active Directory, Windows and Linux in an enterprise environment is highly advantageous
  • Hands on experience with internet proxies, end point security tools and data loss prevention systems also highly advantageous

About you:

Competence

  • Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc.
  • Minimum 5 years’ experience in an Information Security role gained in a financial services or e-commerce environment is preferred

Knowledge & Skills

  • Self-motivated, professional, tenacious and enthusiastic
  • Strong ownership of tasks, attention to detail and following through to conclusion
  • Ability to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved
  • Ability to work under own initiative to plan and communicate effectively with colleagues and customers
  • Structured, self-starting, flexible and enjoy working in fast-paced environments
  • Excellent communication skills, both written and verbal
  • Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management
  • Ability to learn and develop new skills and take on new challenges
  • Excellent attention to detail
  • Attained or working towards CISSP certification

About us:

AJ Bell is one of the fastest-growing investment platform businesses in the UK offering an award-winning range of solutions that caters for everyone, from professional financial advisers, to DIY investors with little to no experience. We have 491,000 customers using our award-winning platform propositions to manage assets totalling more than £76.1 billion. Our customers trust us with their investments, and by continuously striving to make investing easier, we aim to help even more people take control of their financial futures.

Having listed on the Main Market of the London Stock Exchange in December 2018, AJ Bell is now a FTSE 250 company.

Headquartered in Manchester with offices in central London and Bristol, we now have over 1200 employees and have been named one of the UK's 'Best 100 Companies to Work For’ for six consecutive years.

There are opportunities for growth and professional development for employees wanting to progress within their career including induction training and our study support scheme which is part of our benefits package.

There is an active programme of social events throughout the year, which are open to all employees. 

What we offer:

  • Generous holiday allowance of 27 days, increasing up to 31 days with service, plus bank holidays
  • Holiday buy/sell scheme
  • Hybrid working policy
  • Casual dress code
  • Discretionary bi-annual bonus
  • Contributory pension scheme
  • Buy as you earn share scheme
  • Free shares scheme
  • Paid study support for qualifications
  • Enhanced maternity/paternity scheme from day one
  • Bike loan
  • Season ticket loan portal
  • Discounted PMI and Dental
  • On-site gym and personal trainer led classes
  • Paid volunteering opportunities
  • Free social events and more

AJ Bell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and all employees are empowered to bring their whole self to work.

We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, physical and mental disability, marital status and any other characteristics protected by the Equality Act 2010. All decisions to hire are based on qualifications, merit and business need.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  12  0  0

Tags: Active Directory Business Intelligence CISO CISSP Cloud E-commerce Incident response ISO 27001 Linux Monitoring NIST Risk management SIEM Strategy Threat intelligence Vulnerabilities Windows

Perks/benefits: Career development Equity / stock options Fitness / gym Flex hours Parental leave Salary bonus Team events

Regions: Remote/Anywhere Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.