Head of Cyber Security Operations

Job Title

Head of Cyber Security Operations

Location

Asda House

Employment Type

Full time

Contract Type

Permanent

Hours per Week

37.5

Salary

Competitive Salary plus benefits

Category

Cyber Security

Closing Date

3 January 2025

 

Head of Cyber Security Operations

As Asda's Head of Cyber Security Operations, you will be responsible for managing and maturing Asda's cyber security operations centre, including overseeing our threat intelligence, incident response, and security engineering teams. You will own the cyber security operational and engineering responsibilities of the identify, protect, detect, respond, and recover phases of the NIST Cybersecurity Framework. Managing and evolving Asda Groups cyber operations across our store, convenience, distribution, manufacturing and ecommerce landscape.

You’ll have a passion for building, leading and evolving, with a continuous learning mindset. With this, you will be working in one of the UK’s largest, modern, cloud first and innovative retail environments. With the ability to leverage the latest cyber security technology, techniques and thinking to protect our business.

Your responsibilities will include:

• Leadership and Management: Provide strategic leadership and direction to the security operations teams, fostering a culture of excellence, collaboration, and continuous improvement.

• Security Operations Centre: Oversee the operations and performance of Asda's SOC, ensuring effective monitoring, detection, and response to security incidents.

• Threat Intelligence: Lead the threat intelligence team to proactively identify, analyse, and mitigate potential security threats to Asda's infrastructure and data.

• Incident Response: Direct the incident response team in managing and resolving security incidents, ensuring timely and effective response to security events.

• Security Engineering: Supervise the security engineering team in designing, implementing, and maintaining security solutions to protect Asda's assets.

• NIST Cybersecurity Framework: Own the operational responsibilities for the identify, protect, detect, respond, and recover phases of the NIST Cybersecurity Framework, ensuring comprehensive security coverage across all phases.

• Collaboration: Work closely with other departments, including IT, legal, and compliance, to ensure a cohesive and integrated approach to security operations.

• Stakeholder Engagement: Engage with stakeholders to communicate security risks, strategies, and progress, ensuring alignment with Asda's overall business objectives.

• Policy and Compliance: Ensure compliance with relevant security policies, standards, and regulations, and drive the development and implementation of security policies and procedures.

• Attack Simulation and process testing: Planning and execution of regular testing to measure cyber maturity; including tabletop, red, blue and purple teaming exercises.

• Supplier Management: Management, measurement and optimisation of 3rd party managed security service providers to Asda

About you:

• Experience: Significant experience operating in a senior security operations role, with a strong background in SOC management, threat intelligence, incident response, and security engineering.
• Knowledge: In-depth knowledge of the NIST/CIS Cybersecurity Framework and its application in a large organization.
• Technology: Experience with the Microsoft security tooling portfolio and Azure highly desirable, as well as diverse cloud first technology landscapes including eCommerce.
• Leadership: Proven ability to lead and mentor security teams, with a focus on fostering a collaborative and innovative work environment. Experience with product ways of working advantageous
• Communication: Excellent communication skills, with the ability to convey complex security concepts to a broad audience, relating them to business value.
• Certifications: Relevant security certifications (e.g., CISSP, CISM, CEH) are highly desirable.
• Problem-Solving: Strong analytical and problem-solving skills, with the ability to think strategically and make data-driven decisions.

Work Where it Works   

Our hybrid way of working gives you the choice to work where it works.  This enables you to chose where you’ll be the most effective.  It offers a mix of working from home and in an office environment that works best for you and your team. 
You will also get an excellent benefits package including;-
•    Discretionary company bonus
•    £8,000 company car or car allowance
•    Company pension 1.5 times colleagues contribution (Max 15%)
•    10% colleague discount, free parking and many additional rewards.
 
About You

We want all colleagues to be able to bring their best and true selves to work, every day. Simply put, we want our colleagues to be Proud to be Asda and proud to be themselves.