Security Testing Operations Manager

The Security Testing Operations Manager role is a crucial role for the vulnerability management and offensive testing activities across the group to which protects the business from sophisticated cyber threats!

The role holder will work with our 3rd party vendors to plan and facilitate our testing programmes ensuring they run efficiently. These programmes include our regulator led Thread Intelligence Led Pen Testing (TLTP), Red teaming, Social engineering simulations, Bug Bounty and external vulnerability scanning services. The applicant will be a domain authority on vulnerability impact and risk, provide insight on root cause analysis and remediation. This role requires working closely within a technical team and with external teams, BISOs, the GSOC, and other entities.

The candidate will stay ahead of emerging cyber security thought leadership and share ideas for areas of improvement and innovation that support good risk decisions and drive continuous security risk improvement

Role Responsibilities & Key Accountabilities:

• Develop, maintain and implement the TLTP framework and ensure exercises are aligned with it

• Facilitate Bug bounty / External vulnerability scanning / TLTP exercises working with internal and external teams ensuring the exercises run efficiently.

• Represent LSEG in front of regulators and vendors coordinating with them and senior business leadership to ensure good risk decisions are made that drive continuous security risk improvement

• Review vulnerability reports, validate issues reported and triage based on risk

• Support teams in understanding vulnerabilities and validate fixes through retesting

• Coordinate remediation efforts by detailing actions, owners and timelines. Then follow up where appropriate

• Lead and mentor junior analysts engaging in above activities

Qualifications & Experience:

• Technology related Bachelor's Degree or equivalent experience and certifications in cyber security

• Background in Red Teaming and/or Penetration Testing

• Understanding of enterprise operating system environments, Active Directory and networking

• Sold understanding of security vulnerabilities and common software engineering flaws

• Familiarity with red teaming related regulations and frameworks (DORA/CBEST/TIBER) nice to have

• Familiarity with Network Defence analytical models (Kill Chain, ATT&CK, etc.)

• Experience working with Financial Services and Critical Infrastructure a plus

• Strong verbal & written communication skills & presentation skills 

• Management experience a plus

• Ability to work in a fast-paced environment

• Problem solver and barrier breaker with initiative

Do you have a back ground in penetration testing or red teaming, and are looking for your careers next step? This is a superb opportunity for you to move into industry and get management exposure!

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.

Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.

Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.

We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it’s used for, and how it’s obtained, your rights and how to contact us as a data subject.

If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.